On Mi, 26 ian 22, 20:30:37, de...@sumpfralle.de wrote:
> Hello,
>
> given the recent CVE-2021-4034 (gaining local root access via "policykit-1"),
> I
> would like to raise this request again: it would be great, if the
> libvirt-daemon-system package would reduce its hard dependency ("Depends") on
Hello,
given the recent CVE-2021-4034 (gaining local root access via "policykit-1"), I
would like to raise this request again: it would be great, if the
libvirt-daemon-system package would reduce its hard dependency ("Depends") on
"policykit-1" to a soft dependency ("Recommends").
If I understand
Package: libvirt-daemon-system
Version: 3.0.0-4+deb9u1
Followup-For: Bug #768376
Dear Maintainer,
-- System Information:
Debian Release: 9.3
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.9.0-4-amd64 (SMP w/4 CPU
Hi everyone
Was upgrading one of my servers and noticed that libvirt broke completely.
Turns out, "libvirt-daemon-system" could not be installed due to "policykit-1" dependency,
which in turn depends on ...drum roll... "systemd", which is blacklisted on my systems.
Manually extracting all the
Hi,
On Mon, Jul 06, 2015 at 10:45:43PM +0200, Jan-Benedict Glaw wrote:
> Hi all, hi Guido!
>
> I just wanted to throw in my 2c. While cleaning up some machines, I
> came along my KVM host and actually wondered why policykit was pulled
> in. I'm as well only using root-based access to libvirt, whi
Package: libvirt-daemon-system
Version: 1.2.15-2
--- Please enter the report below this line. ---
Is there anything missing in the documentation patch offered by Reco on the 7th
of November 2014?
From my point of view it clearly documents access control with and without
policykit as well as the s
Sorry to interrupt your discussion, but:
On Sun, 16 Nov 2014 10:17:55 +0100
Guido Günther wrote:
> On Sat, Nov 15, 2014 at 11:23:58AM +0100, Axel Beckert wrote:
> [..snip..]
>
> > Guido Günther wrote:
> > > And what about /lib/systemd/system/libvirtd.socket ?
> >
> > There are people who use
On Sat, Nov 15, 2014 at 11:23:58AM +0100, Axel Beckert wrote:
[..snip..]
> Guido Günther wrote:
> > And what about /lib/systemd/system/libvirtd.socket ?
>
> There are people who use other init systems.
My point exactly. To _have_ a choice we need to properly document what
to change for _all_ in
Hi,
Guido Günther wrote:
> I'll leave this open to hear about other opinions
+1
I actually decided to not use libvirt on Wheezy, because I noticed
that it would pull in policykit when I will upgrade the server to
Jessie. I do not want any freedesktop.org middleware on any of my
servers. There ar
Hi.
On Fri, 7 Nov 2014 21:17:34 +0100
Guido Günther wrote:
> Thanks for the path but we have this in libvirt-daemon-system.NEWS
> already - and that's the package that depends on systemd. We rather
> need an update to README.Debian of libvirt-daemon-system explaining
> how to _exactly_ config
Hi Reco,
On Fri, Nov 07, 2014 at 06:49:43PM +0300, Reco wrote:
> On Fri, 7 Nov 2014 13:00:03 +0100
> Guido Günther wrote:
>
> > And what about /lib/systemd/system/libvirtd.socket ?
>
> A good point. That's something I missed due to not using systemd in
> wheezy.
>
>
> > I'm happy to apply patc
On Fri, 7 Nov 2014 13:00:03 +0100
Guido Günther wrote:
> And what about /lib/systemd/system/libvirtd.socket ?
A good point. That's something I missed due to not using systemd in
wheezy.
> I'm happy to apply patches that improve the situation (either code
> wise or documentation wise) but until
On Fri, Nov 07, 2014 at 11:01:30AM +0300, Reco wrote:
> On Fri, 7 Nov 2014 08:46:42 +0100
> Guido Günther wrote:
>
> > Having polkit installed and doing nothing (for people switching to
> > socke based permission checks) is IMHO a better service to our users
> > than having all the bugs for peopl
On Fri, 7 Nov 2014 08:46:42 +0100
Guido Günther wrote:
> Having polkit installed and doing nothing (for people switching to
> socke based permission checks) is IMHO a better service to our users
> than having all the bugs for people installing without recommends (and
> there are many of those). D
On Fri, Nov 07, 2014 at 01:21:04AM +0300, Reco wrote:
> Package: libvirt-daemon-system
> Version: 1.2.9-3~bpo70+1
> Severity: minor
>
> Dear Maintainer,
>
> A recent upload of backported libvirt packages introduced policykit-1
> hard dependency on libvirt-daemon-system package.
>
> Such dependen
Package: libvirt-daemon-system
Version: 1.2.9-3~bpo70+1
Severity: minor
Dear Maintainer,
A recent upload of backported libvirt packages introduced policykit-1
hard dependency on libvirt-daemon-system package.
Such dependency is unnecessary strict, as 'polkit' authentication type
(according to th
16 matches
Mail list logo
