On Tue, Jul 7, 2020 at 10:05 PM ToddAndMargo via users
wrote:
> On 2020-07-07 12:25, Tom H wrote:
>> On Tue, Jul 7, 2020 at 7:38 PM Samuel Sieb wrote:
>>>
>>> One thing to remember is that if you change the group or passwd
>>> file, you need to start a new session to pick up the changes. As
>>> r
On 2020-07-08 05:46, Ed Greshko wrote:
> On 2020-07-08 03:25, Tom H wrote:
>> In my case, I'd halted the VM so the output above reflects accurately
>> the state of affairs.
>
> Now, anyone interested in really proving to themselves that this doesn't work
> can do this on their own system.
>
And l
On 2020-07-08 03:25, Tom H wrote:
> In my case, I'd halted the VM so the output above reflects accurately
> the state of affairs.
I know what I said, but
An even more direct way to demonstrate that nesting of groups is bogus.
(Everything done below was via ssh with logout/login between change
On 2020-07-07 12:25, Tom H wrote:
On Tue, Jul 7, 2020 at 7:38 PM Samuel Sieb wrote:
On 7/7/20 6:07 AM, Tom H wrote:
On Tue, Jul 7, 2020 at 12:53 AM ToddAndMargo via users
Try it with vi and a colon.
I used "vi" in the form of "vigr" (the group equivalent of "vipw").
A colon?! That means
On Tue, Jul 7, 2020 at 7:38 PM Samuel Sieb wrote:
> On 7/7/20 6:07 AM, Tom H wrote:
>> On Tue, Jul 7, 2020 at 12:53 AM ToddAndMargo via users
>>> Try it with vi and a colon.
>>
>> I used "vi" in the form of "vigr" (the group equivalent of "vipw").
>>
>> A colon?! That means that you're adding a
On 7/7/20 6:07 AM, Tom H wrote:
On Tue, Jul 7, 2020 at 12:53 AM ToddAndMargo via users
Try it with vi and a colon.
I used "vi" in the form of "vigr" (the group equivalent of "vipw").
A colon?! That means that you're adding a fifth field.
Exactly.
Also, it would help if you showed me your
On Tue, Jul 7, 2020 at 12:53 AM ToddAndMargo via users
wrote:
> On 2020-07-06 06:00, Tom H wrote:
>> On Mon, Jul 6, 2020 at 7:48 AM ToddAndMargo via users
>> wrote:
>>> On 2020-07-05 21:59, Tom H wrote:
On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
wrote:
>
> libvirt:x:
On 2020-07-06 16:29, Doug H. wrote:
On Mon, Jul 6, 2020, at 4:22 PM, Samuel Sieb wrote:
On 7/6/20 3:53 PM, ToddAndMargo via users wrote:
But what I have noticed was in the man page, they state
that the users list is comma separated. I used a colon.
That means you added another field to the
On Mon, Jul 6, 2020, at 4:22 PM, Samuel Sieb wrote:
> On 7/6/20 3:53 PM, ToddAndMargo via users wrote:
> > But what I have noticed was in the man page, they state
> > that the users list is comma separated. I used a colon.
>
> That means you added another field to the line. I can't find any
>
On 2020-07-06 16:22, Samuel Sieb wrote:
On 7/6/20 3:53 PM, ToddAndMargo via users wrote:
But what I have noticed was in the man page, they state
that the users list is comma separated. I used a colon.
That means you added another field to the line. I can't find any
documentation indicating
On 7/6/20 3:53 PM, ToddAndMargo via users wrote:
But what I have noticed was in the man page, they state
that the users list is comma separated. I used a colon.
That means you added another field to the line. I can't find any
documentation indicating that's valid or that the 5th field has a
On 2020-07-06 06:00, Tom H wrote:
On Mon, Jul 6, 2020 at 7:48 AM ToddAndMargo via users
wrote:
On 2020-07-05 21:59, Tom H wrote:
On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
wrote:
libvirt:x:977:root:@users
Are you sure
1) That you can use netgroup notation when you're (presumab
On Mon, Jul 6, 2020 at 7:48 AM ToddAndMargo via users
wrote:
> On 2020-07-05 21:59, Tom H wrote:
>> On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
>> wrote:
>>>
>>> libvirt:x:977:root:@users
>>
>> Are you sure
>>
>> 1) That you can use netgroup notation when you're (presumably) not
>> usin
On 2020-07-06 19:46, ToddAndMargo via users wrote:
>
> I would love to know the answer to the mystery.
>
> I do work a lot in the Windows world. I get a lot of
> "it works for me" from tech support, typically if I
> am the first on reporting a problem. It is very
> annoying. I like to figure out
On 2020-07-06 04:31, Ed Greshko wrote:
On 2020-07-06 19:23, ToddAndMargo via users wrote:
On 2020-07-06 04:17, Jon Ingason wrote:
Den 2020-07-06 kl. 11:23, skrev ToddAndMargo via users:
On 2020-07-05 23:31, Jon Ingason wrote:
Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
On 2020-07
On 2020-07-06 19:23, ToddAndMargo via users wrote:
> On 2020-07-06 04:17, Jon Ingason wrote:
>> Den 2020-07-06 kl. 11:23, skrev ToddAndMargo via users:
>>> On 2020-07-05 23:31, Jon Ingason wrote:
Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
> On 2020-07-05 21:47, Tom H wrote:
>>
On 2020-07-06 04:17, Jon Ingason wrote:
Den 2020-07-06 kl. 11:23, skrev ToddAndMargo via users:
On 2020-07-05 23:31, Jon Ingason wrote:
Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
On 2020-07-05 21:47, Tom H wrote:
On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
wrote:
$
Den 2020-07-06 kl. 11:23, skrev ToddAndMargo via users:
> On 2020-07-05 23:31, Jon Ingason wrote:
>> Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
>>> On 2020-07-05 21:47, Tom H wrote:
On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
wrote:
>
> $ grep -i users gro
On 2020-07-05 23:31, Jon Ingason wrote:
Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
On 2020-07-05 21:47, Tom H wrote:
On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
wrote:
$ grep -i users group
users:x:100:todd
libvirt:x:977:root:users
Are you sure that you can nest a g
Den 2020-07-06 kl. 07:49, skrev ToddAndMargo via users:
> On 2020-07-05 21:47, Tom H wrote:
>> On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
>> wrote:
>>>
>>> $ grep -i users group
>>> users:x:100:todd
>>> libvirt:x:977:root:users
>>
>> Are you sure that you can nest a group within anothe
On 2020-07-05 21:47, Tom H wrote:
On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
wrote:
$ grep -i users group
users:x:100:todd
libvirt:x:977:root:users
Are you sure that you can nest a group within another in "/etc/group"?
I goofed the syntax. You use @ in front of groups
libvir
On 2020-07-05 21:59, Tom H wrote:
On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
wrote:
libvirt:x:977:root:@users
Are you sure
1) That you can use netgroup notation when you're (presumably) not
using nis/nisplus/ldap?
2) That you can nest a netgroup in a group? I've only seen/used
n
On Mon, Jul 6, 2020 at 1:22 AM ToddAndMargo via users
wrote:
>
> libvirt:x:977:root:@users
Are you sure
1) That you can use netgroup notation when you're (presumably) not
using nis/nisplus/ldap?
2) That you can nest a netgroup in a group? I've only seen/used
netgroups used in "/etc/group" on a
On 2020-07-06 12:47, Tom H wrote:
> On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
> wrote:
>> $ grep -i users group
>> users:x:100:todd
>> libvirt:x:977:root:users
> Are you sure that you can nest a group within another in "/etc/group"?
I've demonstrated that it doesn't work.
FWIW, this
On Mon, Jul 6, 2020 at 12:59 AM ToddAndMargo via users
wrote:
>
> $ grep -i users group
> users:x:100:todd
> libvirt:x:977:root:users
Are you sure that you can nest a group within another in "/etc/group"?
___
users mailing list -- users@lists.fedoraproj
On 2020-07-06 12:22, ToddAndMargo via users wrote:
> What does
> $grep egreshko /etc/passwd
> give?
It gives a normal user entry in the passwd file. Nothing special.
Not sure why you'd be asking that. My uid and gid are not that of root or
anything.
>
> Does
> libvirt:x:983:egreshko
> wor
On 2020-07-05 19:46, Ed Greshko wrote:
On 2020-07-06 08:00, ToddAndMargo via users wrote:
On 2020-07-05 16:57, Ed Greshko wrote:
On 2020-07-06 07:38, Ed Greshko wrote:
So, now, if you use the "id" command you're listed as being in the libvirt
group?
Doesn't work for me
[egreshko@f32g ~
On 2020-07-06 07:12, Samuel Sieb wrote:
>
> I didn't think so either, but my man page index was out of date, so I had to
> wait for it to rebuild so I could verify before replying. :-)
And I see I need to be even more diligent in testing/verifying things before
posting. :-)
That is what VM's we
On 2020-07-06 08:00, ToddAndMargo via users wrote:
> On 2020-07-05 16:57, Ed Greshko wrote:
>> On 2020-07-06 07:38, Ed Greshko wrote:
>>> So, now, if you use the "id" command you're listed as being in the libvirt
>>> group?
>>
>> Doesn't work for me
>>
>> [egreshko@f32g ~]$ grep users /etc/gro
On 2020-07-06 08:00, ToddAndMargo via users wrote:
> On 2020-07-05 16:57, Ed Greshko wrote:
>> On 2020-07-06 07:38, Ed Greshko wrote:
>>> So, now, if you use the "id" command you're listed as being in the libvirt
>>> group?
>>
>> Doesn't work for me
>>
>> [egreshko@f32g ~]$ grep users /etc/gro
On 2020-07-06 07:59, ToddAndMargo via users wrote:
> $ id todd
>
> uid=500(todd) gid=100(users)
> groups=100(users),1003(fuse),985(geoclue),1001(autologin)
So, you are *not* in the group libvirt.
>
> > Too easy to blanket grant privileges unintentionally.
>
> explain
Ooopsss, I forgot I put @us
On 2020-07-05 16:57, Ed Greshko wrote:
On 2020-07-06 07:38, Ed Greshko wrote:
So, now, if you use the "id" command you're listed as being in the libvirt
group?
Doesn't work for me
[egreshko@f32g ~]$ grep users /etc/group
users:x:100:egreshko
libvirt:x:983:@users
[egreshko@f32g ~]$ id
ui
On 2020-07-05 16:38, Ed Greshko wrote:
On 2020-07-06 07:22, ToddAndMargo via users wrote:
On 2020-07-05 16:12, Samuel Sieb wrote:
On 7/5/20 4:02 PM, Ed Greshko wrote:
On 2020-07-06 06:58, ToddAndMargo via users wrote:
On 2020-07-05 03:47, Ed Greshko wrote:
On 2020-07-05 09:47, ToddAndMargo v
On 2020-07-06 07:38, Ed Greshko wrote:
> So, now, if you use the "id" command you're listed as being in the libvirt
> group?
Doesn't work for me
[egreshko@f32g ~]$ grep users /etc/group
users:x:100:egreshko
libvirt:x:983:@users
[egreshko@f32g ~]$ id
uid=1000(egreshko) gid=1000(egreshko)
gr
On 2020-07-06 07:22, ToddAndMargo via users wrote:
> On 2020-07-05 16:12, Samuel Sieb wrote:
>> On 7/5/20 4:02 PM, Ed Greshko wrote:
>>> On 2020-07-06 06:58, ToddAndMargo via users wrote:
On 2020-07-05 03:47, Ed Greshko wrote:
> On 2020-07-05 09:47, ToddAndMargo via users wrote:
>> But
On 2020-07-05 16:12, Samuel Sieb wrote:
On 7/5/20 4:02 PM, Ed Greshko wrote:
On 2020-07-06 06:58, ToddAndMargo via users wrote:
On 2020-07-05 03:47, Ed Greshko wrote:
On 2020-07-05 09:47, ToddAndMargo via users wrote:
But some of the things I run, even with beesu,
such as the virt-manager, st
On 7/5/20 4:02 PM, Ed Greshko wrote:
On 2020-07-06 06:58, ToddAndMargo via users wrote:
On 2020-07-05 03:47, Ed Greshko wrote:
On 2020-07-05 09:47, ToddAndMargo via users wrote:
But some of the things I run, even with beesu,
such as the virt-manager, still trigger the Xfce
Are you saying you
On 2020-07-06 06:58, ToddAndMargo via users wrote:
> On 2020-07-05 03:47, Ed Greshko wrote:
>> On 2020-07-05 09:47, ToddAndMargo via users wrote:
>>> But some of the things I run, even with beesu,
>>> such as the virt-manager, still trigger the Xfce
>>
>> Are you saying you've not placed your user
On 2020-07-05 03:47, Ed Greshko wrote:
On 2020-07-05 09:47, ToddAndMargo via users wrote:
But some of the things I run, even with beesu,
such as the virt-manager, still trigger the Xfce
Are you saying you've not placed your user in the libvirt group?
$ grep -i users group
users:x:100:todd
On 2020-07-05 09:33, Tom H wrote:
On Sun, Jul 5, 2020 at 3:50 AM ToddAndMargo via users
wrote:
On 2020-07-03 13:56, Tom H wrote:
On Fri, Jul 3, 2020 at 10:09 PM Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
On Sun, Jul 5, 2020 at 3:50 AM ToddAndMargo via users
wrote:
> On 2020-07-03 13:56, Tom H wrote:
>> On Fri, Jul 3, 2020 at 10:09 PM Samuel Sieb wrote:
>>> On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while
On 2020-07-05 09:47, ToddAndMargo via users wrote:
> But some of the things I run, even with beesu,
> such as the virt-manager, still trigger the Xfce
Are you saying you've not placed your user in the libvirt group?
--
The key to getting good answers is to ask good questions.
__
On 2020-07-05 15:55, ToddAndMargo via users wrote:
> On 2020-07-04 20:24, Ed Greshko wrote:
>> On 2020-07-05 09:48, ToddAndMargo via users wrote:
>>> In Linux, everything is configurable.
>>>
>>> How do I disable this behavior?
>>
>> man sudoers
>>
>
> Man sudoers has information about the pol kit?
On 2020-07-04 20:24, Ed Greshko wrote:
On 2020-07-05 09:48, ToddAndMargo via users wrote:
In Linux, everything is configurable.
How do I disable this behavior?
man sudoers
Man sudoers has information about the pol kit?
___
users mailing list --
On 2020-07-05 09:48, ToddAndMargo via users wrote:
> In Linux, everything is configurable.
>
> How do I disable this behavior?
man sudoers
--
The key to getting good answers is to ask good questions.
___
users mailing list -- users@lists.fedoraproject
On 2020-07-03 13:56, Tom H wrote:
On Fri, Jul 3, 2020 at 10:09 PM Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be addressed:
xfce pol kit lets others sneak in
https://
On Fri, 2020-07-03 at 23:55 -0700, ToddAndMargo via users wrote:
On 2020-07-03 21:59, Samuel Sieb wrote:
ow in the world is that not a security hole?
Why would it be? You just authenticated yourself. Why is it a problem
to let you stay authenticated for a few minutes? What do you think
c
You still need to type "sudo" you just don't need to enter your
password for sudo commands for a few minutes. It doesn't make all
commands run as root.
On Fri, 2020-07-03 at 23:55 -0700, ToddAndMargo via users wrote:
> On 2020-07-03 21:59, Samuel Sieb wrote:
> > > ow in the world is that not a se
On 2020-07-04 14:59, ToddAndMargo via users wrote:
> On 2020-07-03 23:01, Ed Greshko wrote:
>> On 2020-07-04 12:59, Samuel Sieb wrote:
>>> On 7/3/20 1:57 PM, ToddAndMargo via users wrote:
On 2020-07-03 13:07, Samuel Sieb wrote:
> On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
>> Oh
On 7/3/20 11:55 PM, ToddAndMargo via users wrote:
On 2020-07-03 21:59, Samuel Sieb wrote:
ow in the world is that not a security hole?
Why would it be? You just authenticated yourself. Why is it a
problem to let you stay authenticated for a few minutes? What do you
think could happen?
W
On 2020-07-03 23:01, Ed Greshko wrote:
On 2020-07-04 12:59, Samuel Sieb wrote:
On 7/3/20 1:57 PM, ToddAndMargo via users wrote:
On 2020-07-03 13:07, Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a whi
On 2020-07-03 21:59, Samuel Sieb wrote:
ow in the world is that not a security hole?
Why would it be? You just authenticated yourself. Why is it a problem
to let you stay authenticated for a few minutes? What do you think
could happen?
What? You never foolish ran a root command
by acci
On Sat, Jul 4, 2020 at 12:59 AM Ed Greshko
wrote:
> On 2020-07-04 04:56, Tom H wrote:
>>
>> There's a hard-coded 5-minute timeout in polkit.
>
> It would seem dependent on the actions files if the timeout is/isn't
> used.
>
> Example
>
> auth_admin Authentication by an administrative user is req
On Sat, Jul 4, 2020 at 12:53 AM Ed Greshko
wrote:
> On 2020-07-01 21:13, Tom H wrote:
>>
>> I've just read the "polkit" man page and didn't see anything
>> relevant.
>
> How about here?
>
> https://www.freedesktop.org/software/polkit/docs/latest/polkit.8.html
Thanks. That's the man page.
On 2020-07-04 12:59, Samuel Sieb wrote:
> On 7/3/20 1:57 PM, ToddAndMargo via users wrote:
>> On 2020-07-03 13:07, Samuel Sieb wrote:
>>> On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be
On 7/3/20 1:57 PM, ToddAndMargo via users wrote:
On 2020-07-03 13:07, Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be addressed:
xfce pol kit lets others sneak in
https://
On 2020-07-04 04:56, Tom H wrote:
> There's a hard-coded 5-minute timeout in polkit.
It would seem dependent on the actions files if the timeout is/isn't used.
Example
auth_admin Authentication by an administrative user is required.
v.s.
auth_admin_keep Like auth_admin but the authorizatio
On 2020-07-01 21:13, Tom H wrote:
> I've just read the "polkit" man page and didn't see anything relevant.
How about here?
https://www.freedesktop.org/software/polkit/docs/latest/polkit.8.html
--
The key to getting good answers is to ask good questions.
_
On 2020-07-03 13:56, Tom H wrote:
On Fri, Jul 3, 2020 at 10:09 PM Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be addressed:
xfce pol kit lets others sneak in
https://
On 2020-07-03 13:07, Samuel Sieb wrote:
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be addressed:
xfce pol kit lets others sneak in
https://github.com/ncopa/xfce-polkit/issues/5
That's not
On Fri, Jul 3, 2020 at 10:09 PM Samuel Sieb wrote:
> On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
>> Oh of interest, Xfce Pol kit has a YUGE security hole that I
>> reported a while back that has yet to be addressed:
>>
>> xfce pol kit lets others sneak in
>> https://github.com/ncopa/xfce-p
On 7/3/20 12:53 PM, ToddAndMargo via users wrote:
Oh of interest, Xfce Pol kit has a YUGE security hole that I
reported a while back that has yet to be addressed:
xfce pol kit lets others sneak in
https://github.com/ncopa/xfce-polkit/issues/5
That's not a huge security hole and it doesn't let
On 2020-07-02 22:26, Ed Greshko wrote:
On 2020-07-03 12:32, ToddAndMargo via users wrote:
On 2020-06-30 21:47, Ed Greshko wrote:
On 2020-07-01 12:42, ToddAndMargo via users wrote:
Thank you!
$ nmcli connection show eno2 | grep perm
connection.permissions: --
What does "--" m
On 2020-07-03 13:26, Ed Greshko wrote:
> If you were to enable logging/debugging for polkit
Actually, that step isn't needed. The message will appear in the journal
without it.
--
The key to getting good answers is to ask good questions.
___
users ma
On 2020-07-03 12:32, ToddAndMargo via users wrote:
> On 2020-06-30 21:47, Ed Greshko wrote:
>> On 2020-07-01 12:42, ToddAndMargo via users wrote:
>>> Thank you!
>>>
>>> $ nmcli connection show eno2 | grep perm
>>> connection.permissions: --
>>>
>>>
>>> What does "--" mean?
>>
>> It
On 2020-06-30 21:47, Ed Greshko wrote:
On 2020-07-01 12:42, ToddAndMargo via users wrote:
Thank you!
$ nmcli connection show eno2 | grep perm
connection.permissions: --
What does "--" mean?
It means "no user restrictions". It means any user can up/down the connection
via n
On 2020-07-01 21:13, Tom H wrote:
> I've just read the "polkit" man page and didn't see anything relevant.
Well, this is getting off-topic anyway.
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.f
On Wed, Jul 1, 2020 at 2:17 PM Ed Greshko
wrote:
> On 2020-07-01 19:40, Tom H wrote:
>> OK. Thanks. Let's hope that this is the right rule:
>
> But I think the one you want is
>
> [egreshko@meimei ~]$ pkaction --verbose --action-id
> org.freedesktop.NetworkManager.network-control
> org.
On Wed, Jul 1, 2020 at 2:04 PM Ed Greshko
wrote:
> On 2020-07-01 19:40, Tom H wrote:
>>
>> $ pkaction --verbose --action-id
>> org.freedesktop.NetworkManager.enable-disable-network
>> org.freedesktop.NetworkManager.enable-disable-network:
>> description: Enable or disable system networking
On Wed, Jul 1, 2020 at 1:13 PM Ed Greshko
wrote:
> On 2020-07-01 18:48, Ed Greshko wrote:
>>
>> I think the key word is "modification"
>
> But, don't ask me why user maria can't modify a connection from the
> command line using nmcli but can modify the connection via KDE
> Networks applet in t
On 2020-07-01 19:40, Tom H wrote:
> OK. Thanks. Let's hope that this is the right rule:
But I think the one you want is
[egreshko@meimei ~]$ pkaction --verbose --action-id
org.freedesktop.NetworkManager.network-control
org.freedesktop.NetworkManager.network-control:
description:
On 2020-07-01 19:40, Tom H wrote:
> OK. Thanks. Let's hope that this is the right rule:
>
> $ pkaction --verbose --action-id
> org.freedesktop.NetworkManager.enable-disable-network
> org.freedesktop.NetworkManager.enable-disable-network:
> description: Enable or disable system networking
>
On Wed, Jul 1, 2020 at 12:49 PM Ed Greshko
wrote:
> On 2020-07-01 18:34, Tom H wrote:
>> On Wed, Jul 1, 2020 at 7:40 AM Ed Greshko
>> wrote:
>>> On 2020-07-01 13:32, Tom H wrote:
On my laptop, the value's "--", which is the default and which
means that root and the polkit admin group
On 2020-07-01 18:48, Ed Greshko wrote:
> I think the key word is "modification"
But, don't ask me why user maria can't modify a connection from the command line
using nmcli but can modify the connection via KDE Networks applet in the
systray without
the system requesting the password of root.
On 2020-07-01 18:34, Tom H wrote:
> On Wed, Jul 1, 2020 at 7:40 AM Ed Greshko
> wrote:
>> On 2020-07-01 13:32, Tom H wrote:
>>> On my laptop, the value's "--", which is the default and which means
>>> that root and the polkit admin group (wheel) can control the
>>> connection.
>> Are you sure abou
On Wed, Jul 1, 2020 at 7:40 AM Ed Greshko
wrote:
> On 2020-07-01 13:32, Tom H wrote:
>>
>> On my laptop, the value's "--", which is the default and which means
>> that root and the polkit admin group (wheel) can control the
>> connection.
>
> Are you sure about that?
>
> connection.autoconnect: ye
On Tue, Jun 30, 2020 at 11:54 PM ToddAndMargo via users
wrote:
> On 2020-06-30 12:08, Tom H wrote:
>>
>> The info used to be in "sysconfig.txt" (provided by initscripts),
>> but, AFAIK, it doesn't ship in Fedora any longer, only in RHEL.
>
> RHEL makes a point of being way, way out-of-date.
It's
On 2020-07-01 13:32, Tom H wrote:
> On my laptop, the value's "--", which is the default and which means
> that root and the polkit admin group (wheel) can control the
> connection.
Are you sure about that?
connection.autoconnect: yes
connection.permissions: --
[maria@f32k ~]$ nmcli connection
On Tue, Jun 30, 2020 at 11:51 PM ToddAndMargo via users
wrote:
> On 2020-06-30 11:48, Tom H wrote:
>> On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
>> wrote:
>>>
>>> Anyone have a link to this
>>>
>>> https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Adminis
On 2020-07-01 12:42, ToddAndMargo via users wrote:
> What does "--" mean?
Precisely, it also means that the parameter is "blank". It means the USERS
parameter will not
exist in the ifcfg file.
--
The key to getting good answers is to ask good questions.
On 2020-07-01 12:42, ToddAndMargo via users wrote:
> Thank you!
>
> $ nmcli connection show eno2 | grep perm
> connection.permissions: --
>
>
> What does "--" mean?
It means "no user restrictions". It means any user can up/down the connection
via nmcli.
--
The key to getting g
On 2020-06-30 21:29, Ed Greshko wrote:
On 2020-07-01 11:33, Samuel Sieb wrote:
Why do you say that? Again, you demonstrated that it *does* work. You just
want to be able to use ifup and ifdown as a user and that isn't going to work,
no matter what options you set.
Right
When it comes
On 2020-06-30 20:36, Samuel Sieb wrote:
On 6/30/20 7:23 PM, ToddAndMargo via users wrote:
If I put something bad into my ifcfg, is there
somewhere that complains?
An invalid option name will be ignored.
An invalid value in a recognized option might give a message.
A missing required option mig
On 2020-07-01 11:33, Samuel Sieb wrote:
> Why do you say that? Again, you demonstrated that it *does* work. You just
> want to be able to use ifup and ifdown as a user and that isn't going to
> work, no matter what options you set.
Right
When it comes to Network Manager.
If the conn
On 6/30/20 7:23 PM, ToddAndMargo via users wrote:
If I put something bad into my ifcfg, is there
somewhere that complains?
An invalid option name will be ignored.
An invalid value in a recognized option might give a message.
A missing required option might give a message or just won't work.
An
On 6/30/20 7:10 PM, ToddAndMargo via users wrote:
On 2020-06-30 17:48, Samuel Sieb wrote:
On 6/30/20 5:26 PM, ToddAndMargo via users wrote:
Never foudn USER, but did find USERS (plural)
Sorry, I dropped the "S".
Not the best choice as is only allow the cnnection when the
specified user(s) a
Hi Sam,
If I put something bad into my ifcfg, is there
somewhere that complains?
-T
___
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedora
On 2020-06-30 17:48, Samuel Sieb wrote:
On 6/30/20 5:26 PM, ToddAndMargo via users wrote:
Never foudn USER, but did find USERS (plural)
Sorry, I dropped the "S".
Not the best choice as is only allow the cnnection when the
specified user(s) are logged in.
Yes, that option is only if you nee
On 6/30/20 5:26 PM, ToddAndMargo via users wrote:
Never foudn USER, but did find USERS (plural)
Sorry, I dropped the "S".
Not the best choice as is only allow the cnnection when the
specified user(s) are logged in.
Yes, that option is only if you need to restrict who can use it.
I really
On 2020-06-30 15:38, Ed Greshko wrote:
On 2020-07-01 05:50, ToddAndMargo via users wrote:
On 2020-06-30 11:48, Tom H wrote:
On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
wrote:
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/Syste
On 2020-07-01 05:50, ToddAndMargo via users wrote:
> On 2020-06-30 11:48, Tom H wrote:
>> On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
>> wrote:
>>>
>>> Anyone have a link to this
>>>
>>> https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Refer
On 6/30/20 2:50 PM, ToddAndMargo via users wrote:
On 2020-06-30 11:48, Tom H wrote:
On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
wrote:
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-net
On 2020-06-30 12:08, Tom H wrote:
The info used to be in "sysconfig.txt" (provided by initscripts), but,
AFAIK, it doesn't ship in Fedora any longer, only in RHEL.
RHEL makes a point of being way, way out-of-date.
I thought the draft documentation for Fedora was pretty sweet.
But it is a draft
On 2020-06-30 11:48, Tom H wrote:
On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
wrote:
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
only the current versi
On Tue, Jun 30, 2020 at 3:26 AM Samuel Sieb wrote:
> On 6/29/20 6:15 PM, ToddAndMargo via users wrote:
>>
>> Anyone have a link to this
>>
>> https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
>
> As fa
On Tue, Jun 30, 2020 at 3:16 AM ToddAndMargo via users
wrote:
>
> Anyone have a link to this
>
> https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
>
> only the current version, not a draft?
man nm-set
On Mon, 29 Jun 2020 at 22:42, ToddAndMargo via users <
users@lists.fedoraproject.org> wrote:
> On 2020-06-29 18:26, Samuel Sieb wrote:
> > On 6/29/20 6:15 PM, ToddAndMargo via users wrote:
> >> Anyone have a link to this
> >>
> >>
> https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0
On 2020-06-29 18:26, Samuel Sieb wrote:
On 6/29/20 6:15 PM, ToddAndMargo via users wrote:
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
As far as I can tell, that
On 6/29/20 6:15 PM, ToddAndMargo via users wrote:
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
As far as I can tell, that section is gone in any current documents (
Hi All,
Anyone have a link to this
https://docs.fedoraproject.org/en-US/Fedora_Draft_Documentation/0.1/html/System_Administrators_Reference_Guide/sect-networkscripts-interfaces.html
only the current version, not a draft?
Many thanks,
-T
___
users mai
100 matches
Mail list logo
