Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 209229

Summary: obex-data-server on system bus via init script
Product: Gentoo Linux Reporter: Christoph Brill (egore) (RESIGNED) <egore>
Component: New packagesAssignee: Petteri Räty (RETIRED) <betelgeuse>
Status: RESOLVED WONTFIX    
Severity: minor    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Attachments: obex-data-server-0.1.ebuild
obex-data-server.rc

Description Christoph Brill (egore) (RESIGNED) 2008-02-07 12:35:02 UTC 
I've been following the development of obex-data-server quite closely and I wrote an ebuild for it, too. Find attached my ebuild that additionally adds a init.d file which is very important for me. Please add these enhancements.

Reproducible: Always

Steps to Reproduce:
Comment 1 Christoph Brill (egore) (RESIGNED) 2008-02-07 12:35:39 UTC 
Created attachment 142879 [details]
obex-data-server-0.1.ebuild

My very own ebuild for obex data server.
Comment 2 Petteri Räty (RETIRED) gentoo-dev 2008-02-07 12:39:52 UTC 
Please attach the init script then but note this about the system wide instance:
01:40 < holtmann> Installing /etc/dbus-1/system.d/obex-data-server.conf should be a configure option. Default to off. Running it as system user in a multiuser system is a security issue.
Comment 3 Christoph Brill (egore) (RESIGNED) 2008-02-08 19:56:05 UTC 
Created attachment 143006 [details]
obex-data-server.rc
Comment 4 Christoph Brill (egore) (RESIGNED) 2008-02-08 19:57:25 UTC 
I know that this is a potential security risk on multi user systems but it's really helpful for headless system (get files from a server to your mobile phone)
Comment 5 Petteri Räty (RETIRED) gentoo-dev 2008-02-11 00:28:14 UTC 
(In reply to comment #3)
> Created an attachment (id=143006) [edit]
> obex-data-server.rc
> 

Shouldn't we be using --system-bus?
Comment 6 Christoph Brill (egore) (RESIGNED) 2008-02-11 22:03:57 UTC 
yeah, you are totally right. This init.d file was the old one I used and I accidentially uploaded it. Adding --system-bus is necessary. Sorry for the confusion.
Comment 7 Petteri Räty (RETIRED) gentoo-dev 2008-02-11 23:11:44 UTC 
(In reply to comment #4)
> I know that this is a potential security risk on multi user systems but it's
> really helpful for headless system (get files from a server to your mobile
> phone)
> 

Perhaps we should run it as nobody.
Comment 8 Petteri Räty (RETIRED) gentoo-dev 2008-02-11 23:36:06 UTC 
(In reply to comment #7)
> 
> Perhaps we should run it as nobody.
> 

This isn't possible without modifying obex-data-server code to drop root to nobody because you need to be root to get the object to system bus. Or we could tweak the dbus policy and create a dedicated user.
Comment 9 Petteri Räty (RETIRED) gentoo-dev 2008-02-26 16:13:59 UTC 
The debug use flag went in in 0.3.
Comment 10 Christoph Brill (egore) (RESIGNED) 2010-07-04 12:47:38 UTC 
obex-data-server is obsoleted by obexd and also no longer developed