I just discussed that with Robert the current rule is
<allow_any>auth_self</allow_any>
<allow_inactive>auth_self</allow_inactive>
<allow_active>yes</allow_active>
the "allow_any" doesn't override the other ones, but active/inactive
apply to your local session when active/inactive, the any applies to non
local session (e.g ssh case), so the patch fixed the issue with local
locked session but not with ssh
letting any client do changes is relaxing a bit permissions but
shouldn't be an issue since it only concerns non sensitive datas
(locale, keyboard, etc), still I would like a security team comment
before doing the change .... Marc, do you have an opinion there?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1512002
Title:
Annoying dialog "Authentication is required to change your own user
data"
To manage notifications about this bug go to:
https://bugs.launchpad.net/accountsservice/+bug/1512002/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
