Summary: | obex-data-server on system bus via init script | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Christoph Brill (egore) (RESIGNED) <egore> |
Component: | New packages | Assignee: | Petteri Räty (RETIRED) <betelgeuse> |
Status: | RESOLVED WONTFIX | ||
Severity: | minor | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: |
obex-data-server-0.1.ebuild
obex-data-server.rc |
Description
Christoph Brill (egore) (RESIGNED)
2008-02-07 12:35:02 UTC
Created attachment 142879 [details]
obex-data-server-0.1.ebuild
My very own ebuild for obex data server.
Please attach the init script then but note this about the system wide instance: 01:40 < holtmann> Installing /etc/dbus-1/system.d/obex-data-server.conf should be a configure option. Default to off. Running it as system user in a multiuser system is a security issue. Created attachment 143006 [details]
obex-data-server.rc
I know that this is a potential security risk on multi user systems but it's really helpful for headless system (get files from a server to your mobile phone) (In reply to comment #3) > Created an attachment (id=143006) [edit] > obex-data-server.rc > Shouldn't we be using --system-bus? yeah, you are totally right. This init.d file was the old one I used and I accidentially uploaded it. Adding --system-bus is necessary. Sorry for the confusion. (In reply to comment #4) > I know that this is a potential security risk on multi user systems but it's > really helpful for headless system (get files from a server to your mobile > phone) > Perhaps we should run it as nobody. (In reply to comment #7) > > Perhaps we should run it as nobody. > This isn't possible without modifying obex-data-server code to drop root to nobody because you need to be root to get the object to system bus. Or we could tweak the dbus policy and create a dedicated user. The debug use flag went in in 0.3. obex-data-server is obsoleted by obexd and also no longer developed |