Insecure PolicyKit policy files and settings or deliberately viewable by simple users?
I just noticed something while browsing through the policykit:
$ ls -l /usr/share/
total 72
-rw-r--r-- 1 root root 3766 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 528 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 1504 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 843 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 4283 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 2644 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 573 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 1177 2008-05-06 12:31 org.freedesktop
-rw-r--r-- 1 root root 1894 2008-04-18 18:08 org.freedesktop
-rw-r--r-- 1 root root 26422 2008-05-27 17:15 org.gnome.
-rw-r--r-- 1 root root 884 2008-04-14 19:49 system-
Are the permissions 0644 on the files deliberately set as such? Shouldn't they be 0600?
Also, from what I see, the menu item System > Administration > Authorizations (aka polkit-
Just wondering, isn't this an insecure way to present administrative settings "on a silver plate"?
Question information
- Language:
- English Edit question
- Status:
- Solved
- Assignee:
- No assignee Edit question
- Solved by:
- Gord Allott
- Solved:
- Last query:
- Last reply: