[arch-general] systemd and local group membership

Tom Gundersen teg at jklm.no
Sun Oct 28 13:08:46 EDT 2012


Nice explanation Zeke. Just one comment:

On Sun, Oct 28, 2012 at 3:17 PM, Zeke Sulastin <zekesulastin at gmail.com> wrote:
> Adding a user to a group can cause this process to be subverted -
> logind can't manage who is in what group.

This means that both the user granted permissons by ACL, and the user
granted permission by being in the right group will have access to the
device. In other words, if your user had access without logind/CK s/he
will still have access with.

The problem might be that programs now rely on logind/CK to _take
away_ permissions from inactive users to make sure that at most one
user has access to the device at any given time.

-t


More information about the arch-general mailing list