Bug 45914

Summary: system bus eavesdropping doesn't give methods by default
Product: dbus Reporter: Colin Walters <walters>
Component: coreAssignee: D-Bus Maintainers <dbus>
Status: RESOLVED DUPLICATE QA Contact: D-Bus Maintainers <dbus>
Severity: normal    
Priority: medium CC: chengwei.yang.cn, msniko14
Version: unspecified   
Hardware: All   
OS: All   
Whiteboard:
i915 platform: i915 features:

Description Colin Walters 2012-02-10 14:30:54 UTC 
http://lists.freedesktop.org/archives/dbus/2010-April/012539.html

What we need is a management socket that's authenticated separately.  See e.g. https://bugs.freedesktop.org/show_bug.cgi?id=24307#c8

I think the reason eavesdropping isn't enabled on the system bus is because we only have uid-based access control, and I'm uncomfortable with allowing any say uid 0 process to snoop on all traffic just by default.

If we have a separate management interface we could e.g. apply SELinux policy to it as well.
Comment 1 Simon McVittie 2014-09-23 14:12:51 UTC 
undoing abusive changes
Comment 2 Simon McVittie 2015-01-22 17:20:17 UTC 
Resolving this as a dup of 46787 rather than the other way round, because there's more discussion over there

*** This bug has been marked as a duplicate of bug 46787 ***

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.