Red Hat Bugzilla – Bug 466610
Gnome-session shouldn't allow shutdown for non privileged users
Last modified: 2008-10-11 12:38:59 EDT
Description of problem:
Gnome-session allows non privileged users to suspend, hibernate, shutdown or restart the system. This is inconsistent with /sbin/shutdown.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.Select System/Shutdown from Gnome menu bar
Non-privileged user can shut the system down
If running as a non-privileged user, it should prompt for root password
The default policy is to allow "console" users the ability to shutdown or reboot.
A "console" user is roughly defined as someone sitting at the physical machine (where they could just yank the plug). The accounting for this is managed by a service called ConsoleKit. You can see a list of currently logged in users and whether they're local or not by running:
This policy is configurable, though, via PolicyKit and the gnome-polkit-authorization tool.