• Skull giver@popplesburger.hilciferous.nl
    link
    fedilink
    arrow-up
    3
    ·
    8 months ago

    I haven’t checked the details yet, but surely this will need configuration to decide what users are allowed to use run0. The binary might exist, ready to be configured (the same is true for many systemd deployments that use alternative network managers!) but without configuration to match, I don’t think run0 will be usable for users that don’t already have root access.

    • NekkoDroid@programming.dev
      link
      fedilink
      arrow-up
      5
      ·
      8 months ago

      it does its authorization with polkit (which IIRC defaults to allow all wheel group members) and giving users that shouldn’t be allowed root access, root access, is not something you ever want. This is usually referred to as unauthorized privilege escalation. Also, it isn’t like sudo doesn’t need configuration.