projects / platform / core / system / dbus-tools.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ed799cf) | patch
policychecker: add rule for group 'priv_*' 33/204333/2 accepted/tizen/unified/20190508.111129 submit/tizen/20190507.115737
authorsanghyeok.oh <sanghyeok.oh@samsung.com>
Tue, 23 Apr 2019 06:18:15 +0000 (15:18 +0900)
committersanghyeok.oh <sanghyeok.oh@samsung.com>
Tue, 7 May 2019 04:58:05 +0000 (13:58 +0900)
commit16b23d5c3cbd1560b7038e0af89713fe7c47742f
tree081cd493637327ae284c79fbba9396a4890dcdeatree | snapshot
parented799cffb3a685f77ed130b3f0d143aa07c7759ecommit | diff
policychecker: add rule for group 'priv_*'

/usr/share/security-manager/policy/privilege-group.list

In case of App, 'priv_*' group is assigned by it's cynara privilege.
But, user daemon also has related 'priv_*' groups.
Due to this group assignment policy rule for group priv_* affects application, user daemons and process who has priv_*.
To prevent this unintended situation, block rule for group 'priv_*'.

Change-Id: I888f28375b017ec00c5fb85bc59557b2145bffbc
Signed-off-by: sanghyeok.oh <sanghyeok.oh@samsung.com>
policychecker/rules.xsl diff | blob | history
Domain: System / IPC;