Draft privilege escalation policy for comments

Kevin Kofler kevin.kofler at chello.at
Mon Feb 1 18:51:42 UTC 2010

Miloslav Trmač wrote:
> That's not the intent: "mechanism" is "the code that causes running
> something as root", in this case DBus activation, not "the code running
> as root" (a DBus server).

Oh, if that's the intent, that's of course perfectly fine.

I'd be happy to provide any needed documentation about KAuth, but you'll 
only really need it if you want to run checks on the source code, as KAuth 
uses existing mechanisms (PolicyKit (both 1 and 0.9 are supported), D-Bus 
activation) for the actual privilege escalation, it's just a source-level 
abstraction layer (so for example, you won't find a PolicyKit policy in the 
source code, but a KAuth policy which is converted to a PolicyKit policy at 
build time).

        Kevin Kofler

More information about the devel mailing list