On Sun, 2017-07-23 at 15:54 +0200, Michael Biebl wrote: > > > > Confirmed, giving access to /proc to polkitd user (running polkitd) is not > > enough, the authentication agent seems to requires that as well (and > > granting > > my user access to /proc denies the interest of hidepid). > > Yeah, the polkitd user is actually experimental only. The version in > unstable runs as root.
I'm actually using policykit-1 from experimental (0.113-6) so it does run as polkitd user. > > Hm, I guess this means you'd have to add your user to that group as well > (or rather any user who wants to use polkit). Which sort of defeats the > purpose of hidepid=2 to some extent. Indeed. -- Yves-Alexis
signature.asc
Description: This is a digitally signed message part
