Tambet Ingo wrote: > On Tue, Jan 27, 2009 at 14:40, Michael Biebl <biebl debian org> wrote: >> Tambet Ingo wrote: >>> Attached patches fix DBus permissions for all NetworkManager pieces >>> (NM, nm-applet, vpn plugins). For more information, see >>> http://lists.freedesktop.org/archives/dbus/2009-January/010807.html >> wouldn't it make sense though, to keep the default deny rules in case you are >> still using an older dbus version? They don't hurt and would make it easier to >> provide backports for already released distros. > > The security issue has always been there, so if your distro intends to > update NM, surely it would want to fix DBus security issues as well? > Also, from distro's perspective, wouldn't it be easier to just change > the default rule than add deny policies to each and every policy file? I'm not sure about that. The fallout of such a change is too big, so I haven't seen an stable distro provide updated dbus packages with the more stricter default policy. Cheers, Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth?
Attachment:
signature.asc
Description: OpenPGP digital signature