oss-sec mailing list archives

Re: Privileged File Access from Desktop Applications

From: Martin Steigerwald <martin () lichtvoll de>
Date: Thu, 11 Jul 2019 17:27:19 +0200

Malte Kraus - 09.07.19, 15:58:

None of the solutions actually provided the user with the accessed
path or file operation in the polkit auth prompt. Users are
confronted with an unspecific request for privileges that they can
only allow or deny without knowing what exactly they are allowing.
(This is unfortunately a common theme, e.g. on KDE the framework is
still missing support for parameterizing polkit prompts.)


For me this looks like KDE developers address this now – at least 
partly:

[KAuth] Add support for action details in Polkit1 backend.
https://phabricator.kde.org/D21795

Thanks,
-- 
Martin

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

Re: Privileged File Access from Desktop Applications, (continued)
- - - Re: Privileged File Access from Desktop Applications John Haxby (Jul 11)
    - Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)
    - Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)
    - Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 11)
    - Re: Privileged File Access from Desktop Applications Jordan Glover (Jul 12)
    - Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 12)
    - Re: Privileged File Access from Desktop Applications Perry E. Metzger (Jul 12)
    - Re: Privileged File Access from Desktop Applications Steffen Nurpmeso (Jul 12)
    - Re: Privileged File Access from Desktop Applications Steffen Nurpmeso (Jul 11)
    - Re: Privileged File Access from Desktop Applications Simon McVittie (Jul 11)
- Re: Privileged File Access from Desktop Applications Martin Steigerwald (Jul 11)