Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge remote-tracking branch 'origin/pr/278'

Browse Source 
* origin/pr/278:
  “sudo” must remove SELinux restrictions
  Only give the “qubes” group full Polkit access
This commit is contained in:
Marek Marczykowski-Górecki 2020-12-28 16:57:15 +01:00
commit a9e98cc13c
No known key found for this signature in database
GPG Key ID: 063938BA42CFA724
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
passwordless-root/polkit-1-qubes-allow-all.rules
View File

@ -1,2 +1,2 @@
//allow any action, detailed reasoning in sudoers.d/qubes
polkit.addRule(function(action,subject) { return polkit.Result.YES; });
polkit.addRule(function(action,subject) { if (subject.isInGroup("qubes")) return polkit.Result.YES; });

2
passwordless-root/qubes.sudoers
View File

@ -1,4 +1,4 @@
Defaults !requiretty
Defaults role=unconfined_r, type=unconfined_t, !requiretty
%qubes ALL=(ALL) NOPASSWD: ALL
# WTF?! Have you lost your mind?!