set user id for service ?
Scott James Remnant
scott at netsplit.com
Tue Sep 19 19:43:57 PDT 2006
On Tue, 2006-09-19 at 21:51 -0400, David Zeuthen wrote:
> On Wed, 2006-09-20 at 01:47 +0100, Scott James Remnant wrote:
> > > and retrofitting that into a "manager daemon" sounds pretty impossible
> > > at worst and hard at best. You'd end up with a proxy running in each
> > > desktop session and the "manager daemon" being something that is reduced
> > > to a mere mechanism. And we already have such mechanisms in place
> > > already.
> > >
> > But doesn't Network Manager work this way already? You have the manager
> > daemon running as root, and the policy daemons running as the users?
> >
> It does and it doesn't make sense to me. You basically get a split into
> two processes. It's a mess. It makes it really difficult because you
> need to use IPC to transfer user settings from the session daemon to the
> system daemon and so forth. You also have a huge lump of code running as
> uid 0 which is not desirable in any way.
>
True, but the advantage of a central daemon is that it can arbitrate two
different logged in users with different policy.
> FWIW, I even convinced my colleague Dan Williams (NM author and primary
> maintainer) that NM is broken in this regard and that we should fix it.
> The bits doing the heavy lifting will be implemented as method calls on
> HAL device objects. Then all policy etc. can be moved to a simple easy
> to understand single-threaded daemon instead of the current mess we have
> today with two daemons connected by an IPC pipe. It's just a lot of work
> and neither Dan nor I have the time to do this right now as we're busy
> with other things.
>
So HAL would get the ability to make changes to hardware, and thus in
effect just becomes the central daemon itself?
Scott
--
Have you ever, ever felt like this?
Had strange things happen? Are you going round the twist?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: This is a digitally signed message part
Url : http://lists.freedesktop.org/archives/dbus/attachments/20060920/0793cfff/attachment.pgp
More information about the dbus
mailing list