On Tue, 25 Jul 2023 11:42:51 +0000 Michael Kjörling <2695bd53d...@ewoof.net> wrote:
> It doesn't look like you can in any current version. Some web > searching brought me to [1] which appears to indicate that the > authentication timeout is currently hardcoded to five minutes for > temporary authorization. What I am seeing is definitely not five minutes (which should be more than adequate). If I understand org.fedoraproject.FirewallD1.desktop.policy.choice correctly (highly debatable), there are different policies for different parts of firewall-config. This does not make sense to me, but it does explain what I see: multiple requests for authentication withing five minutes as I move around in firewall-config. > > If there's some specific action you take regularly you might be able > to define a rule of your own that overrides the default behavior; see > [2] for an example and polkit(8) (search for "polkit.Result") for the > possible return values. However, that will probably fully override the > default behavior, so you likely can't easily implement for example a > longer authentication timeout. I would like to avoid learning my way around yet another arcane piece of software that has infested Linux for no great benefit. I did try a hack of the specific actions example you pointed to, and it did not work: I still had to give multiple authorizations. I may just fall back to what one did before polkit, dbus, etc. came along, and simply run firewall-config as root. That is what the root account is for, after all. -- Does anybody read signatures any more? https://charlescurley.com https://charlescurley.com/blog/
