problems understanding the output of dbus-monitor (security policy)

Fernando Usero fusero@adala.org
Fri Jan 7 11:55:11 PST 2005 

Hi all,

I have written a dbus-glib program in order to perform method calls to
the object provided in test-service.c. I finally got it working, but
can't understand some output provided by dbus-monitor:

-------------------------------
signal interface=org.freedesktop.DBus; member=ServiceCreated;
sender=org.freedesktop.DBus
string::1.9
method call interface=org.freedesktop.DBus; member=Hello; sender=:1.9
error name=org.freedesktop.DBus.Error.AccessDenied;
sender=org.freedesktop.DBus
string:A security policy in place prevents this sender from sending this
message to this recipient, see message bus configuration file (rejected
message had interface "(unset)" member "(unset)" error name
"org.freedesktop.DBus.Error.UnknownMethod" destination ":1.9")
method call interface=org.freedesktop.DBus; member=AddMatch; sender=:1.9
string:type='signal',sender='org.freedesktop.DBus.TestSuiteEchoService',path='/org/freedesktop/TestSuite',interface='org.freedesktop.TestSuite'
error name=org.freedesktop.DBus.Error.AccessDenied;
sender=org.freedesktop.DBus
string:A security policy in place prevents this sender from sending this
message to this recipient, see message bus configuration file (rejected
message had interface "(unset)" member "(unset)" error name
"org.freedesktop.DBus.Error.UnknownMethod" destination ":1.9")
signal interface=org.freedesktop.DBus; member=ServiceDeleted;
sender=org.freedesktop.DBus
string::1.9
------------------------------------

the stuff about the security policy is the part i can't understand. I
send a method call and another is sent again, but it seems that there
are security problems. Where do the problems come from? Why does the
example work? When launching the session dbus i use this policy:

  <policy context="default">
    <!-- Allow everything to be sent -->
    <allow send_destination="*"/>
    <!-- Allow everything to be received -->
    <allow eavesdrop="true"/>
    <!-- Allow anyone to own anything -->
    <allow own="*"/>
    <!-- Allow any user to connect -->
    <allow user="*"/>
  </policy>

this policy seems to allow everything to/from everything.

Any help?

regards,
	Fernando Usero

More information about the dbus mailing list