Skip to content

Commit 5c6f247

Browse files
itsXuStdeepin-bot[bot]
authored andcommitted
fix: Harden DBus security configuration
- Remove redundant allow own rule from default policy - Keep allow own only in root policy for security - Remove redundant interface-specific allow rules - Simplify configuration while maintaining functionality Log: Improve DBus security by ensuring only root can own the service
1 parent aecab5f commit 5c6f247

1 file changed

Lines changed: 0 additions & 7 deletions

File tree

service/assets/data/com.deepin.diskmanager.conf

Lines changed: 0 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -13,13 +13,6 @@
1313
<!-- Allow anyone to invoke methods on the interfaces -->
1414
<policy context="default">
1515
<allow send_destination="com.deepin.diskmanager"/>
16-
17-
<allow send_destination="com.deepin.diskmanager"
18-
send_interface="com.deepin.diskmanager"/>
19-
<allow send_destination="com.deepin.diskmanager"
20-
send_interface="org.freedesktop.DBus.Properties"/>
21-
<allow send_destination="com.deepin.diskmanager"
22-
send_interface="org.freedesktop.DBus.Introspectable"/>
2316
</policy>
2417

2518
</busconfig>

0 commit comments

Comments
 (0)