Red Hat Bugzilla – Bug 66881
incomplete consolehelper functionality
Last modified: 2013-07-02 18:56:31 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513
Description of problem:
I created an rpm installer account, and gave it "rpm" group permissions. I set
all the necessary files to 750, except for links, root:rpm under /bin and
/usr/bin and ensured that consolehelper was set to 755. I tested it and worked
as expected. I went to my sa account, which did not have "rpm" priviledges, but
it does have "root" group, and launched gnorpm from the menu. First, I did not
expect the consolehelper to launch. Second, when I click on "run as
unpriviledged user", it closes out without a message stating "lack of permissions".
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.create an account and give it "rpm" group
2.create an account and give it "root" group
3.chmod 750 and chown :rpm on all rpm files under /usr/bin and /bin, except for
4. on all link files, chown :rpm
5. login as second account, and launch gnorpm from the menu
6. click on "run as unpriviledged user"
Actual Results: The consolehelper disappears never to re-appear and never gives
a reason why
Expected Results: It should not have come up in the first place; because the
2nd account did not even have access to /usr/bin/gnorpm-auth, minus the fact
that it did have access to consolehelper itself. Second, if it did come up and
the user did click on "run as unpriviledged user", it should have told the user
This was the set-up I tried. I don't know how many user/group configurations
this same behavior might manifest itself. Personally, I don't know how many
people might even try this kind of set-up.
Yes, this setup is not very usual, maybe the new feature of "UGROUPS"
in usermode-1.74-1 would help you somehow.
Closing as WONTFIX.