Unfortunately it isn't that easy in my case. I need to have every action
attempted logged. That will still give it to me, but modifying what's
happening by changing what's being requested.
So, if a normal user attempts something, the best case is for it to ask
for the users password and fail when
As an addition... If I remove the 51-ubuntu-admin.conf file, when I run
`snap install blender --classic`, it pops up a dialog box asking for the
"Administrator" password.
Entering roots password will install it.
This is the behaviour wanted. Not install it with only the users
authentication.
--
That's what I want though. I want control through sudoers, not polkit.
The file: /etc/polkit-1/localauthority.conf.d/50-localauthority.conf ... still
contains:
```
[Configuration]
AdminIdentities=unix-user:0
```
I don't know why you need to say root is an admin, but whatever it's
there... And t
Thank You!!!
Can you set it like:
```
[Configuration]
AdminIdentities=
```
So *nothing* is considered an Admin?
That file has `unix-group:sudo;unix-group:admin` ... by default from
what I can tell. But at least that I know this thing exists and hey, you
can elevate privileges without being in su
The above still stands... but that isn't it for `snap` ... I changed all
the `isIngroup("sudo")` to use `sudoA` since that's the actually group
that's in sudoers...
And snap is still letting me install the blender snap in `--classic`
mode. So How do you find out what polkit rules are running a
I think I may have found it It looks like policykit has some rules
with entries like:
```
subject.isInGroup("sudo")
```
That's ... broken. Just being in the `sudo` group should *NOT* let me
install software or elevate my priviledges, *ESPECIALLY* if the user
isn't actually in the sudoers. It
Oliver,
> if you are marked as admin in the policyKit setup
Where do you find this? Where is the definition for what `auth_admin`
does located? From the freedesktop site it *seems* that it's an
"Administrative user," which to me is sudoers. As the system admin I'm
not defining an admin user a
7 matches
Mail list logo
