Bug 66881

From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513

Description of problem:
I created an rpm installer account, and gave it "rpm" group permissions. I set
all the necessary files to 750, except for links, root:rpm under /bin and
/usr/bin and ensured that consolehelper was set to 755. I tested it and worked
as expected. I went to my sa account, which did not have "rpm" priviledges, but
it does have "root" group, and launched gnorpm from the menu. First, I did not
expect the consolehelper to launch. Second, when I click on "run as
unpriviledged user", it closes out without a message stating "lack of permissions". 

Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
1.create an account and give it "rpm" group
2.create an account and give it "root" group
3.chmod 750 and chown :rpm on all rpm files under /usr/bin and /bin, except for
links.
4. on all link files, chown :rpm
5. login as second account, and launch gnorpm from the menu
6. click on "run as unpriviledged user"
	

Actual Results:  The consolehelper disappears never to re-appear and never gives
a reason why

Expected Results:  It should not have come up in the first place; because the
2nd account did not even have access to /usr/bin/gnorpm-auth, minus the fact
that it did have access to consolehelper itself. Second, if it did come up and
the user did click on "run as unpriviledged user", it should have told the user
to "go-away".

Additional info:

This was the set-up I tried. I don't know how many user/group configurations
this same behavior might manifest itself. Personally, I don't know how many
people might even try this kind of set-up.