Hello, An Liu wrote on 28/10/2020 11:40: > Hi, folks, > > I used to type systemctl reboot with non-privileged users, and to my > surprise, the system goes down for the reboot. > > I've tested in both debian and centos 7, they act the same, however, > systemctl halt will prompt you to enter administrator password to continue. > > Is it default behavior by design? I dont think a non-privileged user > could reboot the system as he/she wishes. > > btw, I'm in an HPC related domain, if this behavior of systemctl is > allowed, every single user could reboot the whole cluster as they wish, > it's a disaster. It really depends on the policykit setup. e.g. if the user is in the wheel group, they may have additional privileges by virtue of that. On my systems (centos 8 here) policykit will prompt for the root password: [user@host ~]$ systemctl poweroff ==== AUTHENTICATING FOR org.freedesktop.login1.set-wall-message ==== Authentication is required to set a wall message Authenticating as: root Password: I can't recall off hand, but if the user was in the wheel group, then I think it would still prompt for a password, but would ask for the user password. These are via SSH, but policykit also has overrides for users logged in locally. As these guys have physical access to the machine, they might be allowed to do certain things, like reboot etc. as they have access to the plug anyway, it's not really any additional security concern. So, ultimately, my advice is to check your policykit setup and see what the policy is. Col PS, I did spot an awesome security bug in an old redhat security tool a few years back (I think it was called sectool) which installed a bogus policy file which basically gave users full rights to things like service management and reboot etc, so it's possible a rogue/buggy policy file from an unrelated package is causing this behaviour too. -- Colin Guthrie gmane(at)colin.guthr.ie https://colin.guthr.ie/ Day Job: Tribalogic Limited https://www.tribalogic.net/ _______________________________________________ systemd-devel mailing list systemd-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Re: systemctl reboot/halt with non-privilege user
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: systemctl reboot/halt with non-privilege user
- From: Colin Guthrie <gmane@xxxxxxxxxxxxxx>
- Date: Wed, 28 Oct 2020 11:59:55 +0000
- In-reply-to: <CAAzVxgOMw69iNcL778bzWWOJg7LdA1P_SCBu7Bat=86kesky-w@mail.gmail.com>
- References: <CAAzVxgOMw69iNcL778bzWWOJg7LdA1P_SCBu7Bat=86kesky-w@mail.gmail.com>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.4.0
- Follow-Ups:
- Re: systemctl reboot/halt with non-privilege user
- From: An Liu
- Re: systemctl reboot/halt with non-privilege user
- References:
- systemctl reboot/halt with non-privilege user
- From: An Liu
- systemctl reboot/halt with non-privilege user
- Prev by Date: systemctl reboot/halt with non-privilege user
- Next by Date: Re: systemctl reboot/halt with non-privilege user
- Previous by thread: systemctl reboot/halt with non-privilege user
- Next by thread: Re: systemctl reboot/halt with non-privilege user
- Index(es):
 |