Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
security:tls:staging
enlightenment
system.conf
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File system.conf of Package enlightenment
# Enlightenment System access control file # # This version of system.conf has been modified specifically for openSUSE # you can find the original in /usr/share/enlightenment/doc. The main changes # are we know that all desktop users are in the users group and we disable # power and storage as enlightenment will use logind and udisks for these # on openSUSE systems so we don't need to grant permissions for them. # # This should be installed as /etc/enlightenment/system.conf if you wish to # limit access to enlightenment_system setuid tool. The tool will load this # file, if it exists, and abort any kind of execution if the file would not # permit the calling user to use it. If this file does not exist, then any # user or group will be permitted to run this tool and access its features. # This file will be installed # This file is read in order from top to bottom - the first rule to MATCH # will be used for a user or a group, and nothing after that is read. # Any user or group NOT matched by an allow or a deny will be ALLOWED to # perform the action by default (system administrators should be aware of # this and implement whatever policies they see fit). Generally speaking # a user of a workstation, desktop or laptop is intended to have such abilities # to perform these actions, thus the default of allow. For multi-user systems # the system administrator is considered capable enough to restrict what they # see they need to. # A WARNING to admins: do NOT allow access for users to this system remotely # UNLESS you fully trust them or you have locked down permissions to halt/reboot # suspend etc. here first. You have been warned. # FORMAT: # # user: username allow: rfkill # group: groupname deny: * # group: * deny: * # user: * allow: power # user: billy allow: l2ping # group: staff deny: backlight # ... etc. ... # # user and group name can use glob matches (* == all for example) like the # shell. as can action names allowed or denied. # # the system to allow at the end is a system name or * for "everything". this # is a glob like filenames. systems supported: # # backlight - core backlight device that maps to a laptop screen or keyboard # ddc - external monitor controls like backlight, color correction etc # storage - handling of removable media devices # power - direct shutdown/reboot/suspend/resume/halt commands # rfkill - rf controls for wireless adaptors # l2ping - bluetooth pings for paired devices (no payload control) # cpufreq - change cpu frequency, governor and similar power controls # root is allowed to do anything - but it needs to be here explicitly anyway user: root allow: * # members of operator, staff and admin groups should be able to do all user: * allow: backlight user: * allow: ddc user: * allow: rfkill user: * allow: l2ping user: * allow: cpufreq # deny everyone else by default user: * deny: *
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
