dbus/bus policy.c,1.22,1.23 session.conf.in,1.8,1.9
John Palmieri
johnp at freedesktop.org
Mon Aug 29 13:19:21 PDT 2005
Update of /cvs/dbus/dbus/bus
In directory gabe:/tmp/cvs-serv17008/bus
Modified Files:
policy.c session.conf.in
Log Message:
* Release 0.36.2
* Add Havoc's patch that never got applied to HEAD (Bug #2436):
* bus/policy.c (bus_policy_allow_user): change default "user is
allowed" to be "user has same uid as the bus itself"; any
allow/deny rules will override.
* bus/session.conf.in: don't allow all users, since now by default
the user that ran the bus can connect.
Index: policy.c
===================================================================
RCS file: /cvs/dbus/dbus/bus/policy.c,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -d -r1.22 -r1.23
--- policy.c 25 Aug 2004 22:11:49 -0000 1.22
+++ policy.c 29 Aug 2005 20:19:19 -0000 1.23
@@ -453,8 +453,9 @@
uid);
return FALSE;
}
-
- allowed = FALSE;
+
+ /* Default to "user owning bus" or root can connect */
+ allowed = uid == _dbus_getuid ();
allowed = list_allows_user (allowed,
&policy->default_rules,
Index: session.conf.in
===================================================================
RCS file: /cvs/dbus/dbus/bus/session.conf.in,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -d -r1.8 -r1.9
--- session.conf.in 25 Oct 2004 18:48:58 -0000 1.8
+++ session.conf.in 29 Aug 2005 20:19:19 -0000 1.9
@@ -19,8 +19,6 @@
<allow eavesdrop="true"/>
<!-- Allow anyone to own anything -->
<allow own="*"/>
- <!-- Allow any user to connect -->
- <allow user="*"/>
</policy>
<!-- This is included last so local configuration can override what's
More information about the dbus-commit
mailing list