Root privileges in Desktop Entry Spec [SoC]
David Collier-Brown
David.Collier-Brown at Sun.COM
Wed Jul 6 15:24:03 EEST 2005
Mike Hearn wrote:
> That's probably a good idea. I don't think anybody has enough experience
> with MAC on desktops to be worrying about SELinux integration just yet
> (despite what i've said in the past ;)
>
>> I believe that adding a
>>
>> RootRequired=yes|no|optional
>>
>> to the Desktop Entry Specs would do the job ? (Then, I should make the
>> items with a "RootRequired=yes" field to be hidden for non-sudoers).
Well, I used to live under MAC in two previous lives,
and it's way easier to understand than ACLs (;-))
To avoid reinventing this wheel later, how about
AccessRequired = root|specific-capability[,specific-capability]
where "root" and the specific capabilities make up a controlled
vocabulary, so lookup is trivial on systems with capabilities
and very trivial if you just want to check for root.
The solution to the general sudo problem (which is arbitrarily
hard!) can be simulated by
1) putting the sudo prefix in the command in the desktop file
2) creating and registering a specific-capability that represents
the permissions gained by sudo-ing, in library which
implements querying for capabilities, and
3) putting AccessRequired = specific-capability in the file.
--dave
--
David Collier-Brown, | Always do right. This will gratify
Sun Microsystems, Toronto | some people and astonish the rest
davecb at canada.sun.com | -- Mark Twain
(416) 263-5733 (x65733) |
More information about the xdg
mailing list