>>> Martin Wilck <mwilck@xxxxxxxx> schrieb am 01.12.2021 um 10:06 in Nachricht <e1c746ffec5c7e95dc52c1b0ca420f15ae8a901f.camel@xxxxxxxx>: > On Tue, 2021‑11‑30 at 14:11 +0100, Mohamed Ali Fodha wrote: >> Thanks, but I think using setuid has a security risk for attackers, >> so I understand there is no so much granularity to manage >> unprivileged access to systemd in case the polkit is not used. > > You could use setcap to set CAP_SYS_ADMIN capabilities on the > executable you start for rebooting. I don't see a big difference wrt > using AmbientCapabilities in a systemd service, as long as you restrict > the program to be executable only by a certain user or group. Polkit > can't do much more, either. Its main purpose is to serve logged‑in > users that want to do certain priviliged actions like mount a volume or > install software, and trigger pop‑ups that ask for either user or admin > passwords. IIUC it's overengineered for what you're trying to do, > unless you want to ask for a password or some other extra > authorization. And I wonder what's wrong with allowing the shutdown command for the user in sudoers. (sudo $(which shutdown) -r now) > > OTOH, if you use CAP_SYS_ADMIN, you might as well use setuid. Same > argument ‑ if you restrict the program properly, it comes down to > exactly the same thing that polkit would do, just far simpler. > > Martin
Antw: [EXT] Re: [systemd‑devel] Run reboot as normal user
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Antw: [EXT] Re: [systemd‑devel] Run reboot as normal user
- From: "Ulrich Windl" <Ulrich.Windl@xxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 01 Dec 2021 10:24:31 +0100
- In-reply-to: <e1c746ffec5c7e95dc52c1b0ca420f15ae8a901f.camel@suse.com>
- References: <CAAcv5+4hYM8mDjpMjPSq2q_D=HVSRT7LPHjQbuu+iwT3+fr2YQ@mail.gmail.com> <CAPWNY8W_O_nmVszNObeYpm10zsSZQPFA_BJcB7ZAJ8MmTt82xg@mail.gmail.com> <so4rbl$jme$1@ciao.gmane.io> <CAAcv5+6P+Eb+eN_=RvqKrrX8aL3W3ZGJna3eHVW=fq1rC8C+EA@mail.gmail.com> <so4vg8$dhk$1@ciao.gmane.io> <CAAcv5+4hS4toL4XVFtFWiyxU05w2UknfwxEqOXzoDA9C7i-ZKg@mail.gmail.com> <e1c746ffec5c7e95dc52c1b0ca420f15ae8a901f.camel@suse.com>
- Follow-Ups:
- Re: Antw: [EXT] Re: [systemd‑devel] Run reboot as normal user
- From: Martin Wilck
- Re: Antw: [EXT] Re: [systemd‑devel] Run reboot as normal user
- References:
- Run reboot as normal user
- From: Mohamed Ali Fodha
- Re: Run reboot as normal user
- From: Mantas Mikulėnas
- Re: Run reboot as normal user
- From: Colin Guthrie
- Re: Run reboot as normal user
- From: Mohamed Ali Fodha
- Re: Run reboot as normal user
- From: Colin Guthrie
- Re: Run reboot as normal user
- From: Mohamed Ali Fodha
- Re: Run reboot as normal user
- From: Martin Wilck
- Run reboot as normal user
- Prev by Date: Re: Run reboot as normal user
- Next by Date: systemd-resolved namespacing
- Previous by thread: Re: Run reboot as normal user
- Next by thread: Re: Antw: [EXT] Re: [systemd‑devel] Run reboot as normal user
- Index(es):
 |