Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#2383 - Can't shutdown/reboot from gnome anymore as user

Attached to Project: Arch Linux
Opened by Eugenia Loli-Queru (Eugenia) - Wednesday, 16 March 2005, 02:00 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To No-one
Architecture not specified
Severity Medium
Priority Normal
Reported Version 0.7 Wombat
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 0
Private No

Details

gnome was done in a way that if someone was to do this;

touch /var/lock/console/eugenia
chattr +i /var/lock/console/eugenia
chmod +4755 /sbin/halt
chmod +4755 /sbin/reboot

then the "eugenia" user would be able to reboot or shutdown the machine. This little trick worked fine for years, so distributions could work around the strict security defaults.

But this does not work anymore with 2.10. I can't turn off or reboot my laptop anymore, as a user.
This task depends upon

Closed by  Jan de Groot (JGC)
Wednesday, 16 March 2005, 10:03 GMT
Reason for closing:  Won't fix
Additional comments about closing:  We don't support hacks with big security holes.
Comment by Jan de Groot (JGC) - Wednesday, 16 March 2005, 06:13 GMT
When logging in via gdm, it works fine.
Comment by Eugenia Loli-Queru (Eugenia) - Wednesday, 16 March 2005, 06:17 GMT
I don't use gdm, i prefer to be booting on text mode.

It is not logical to go out to gdm just to halt/reboot. If a user has the right priviliges, the gnome panel should show the two additional options on the log-out dialog, as it used to. Right now it doesn't do it anymore, that's why I fear it is a bug...
Comment by Jan de Groot (JGC) - Wednesday, 16 March 2005, 07:38 GMT
When logging in using gdm, the gnome panel allows to shut down.
Comment by Eugenia Loli-Queru (Eugenia) - Wednesday, 16 March 2005, 07:46 GMT
Maybe, but I don't use GDM because I want to use as less memory as possible and boot faster on my old Vaio 333/128 MB RAM.
I need back the old functionality where the shutdown/reboot were embedded in the actual logout dialog -- if your user was properly setup'ed to have these priviliges as illustrated above.
Comment by Jan de Groot (JGC) - Wednesday, 16 March 2005, 09:54 GMT
The /var/lock/console and /var/run/console trick were files created by Redhat's pam_console.so, and what you're imitating with the touch commands and the setuid shutdown/poweroff things (big security hole BTW). Redhat uses the pam_console helper module to see if a user is logged on on a local console and allows shutdown.

This redhat specific code has been removed from gnome-session (weren't users always complaining that something is "redhat specific"?). The only supported shutdown way is by using gdm.

Loading...