This repository has been archived by the owner on Jul 23, 2020. It is now read-only.
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
security: Make D-Bus policy rules only affect SensorProxy itself
D-Bus policy XML files are generic configuration for the bus daemon: they are conventionally named like a bus name, but there is nothing that inherently limits their application to that bus name. In particular this means that a rule like <policy context="default"> <allow send_interface="org.freedesktop.DBus.Properties"/> allows any process on the system bus to send an org.freedesktop.DBus.Properties.Set() call to any other process on the system bus, even if the destination process expected to be only accessible by root. Closes: #41
- Loading branch information