diff options
-rw-r--r-- | data/Makefile.am | 2 | ||||
-rw-r--r-- | data/nm-user-settings.conf | 34 |
2 files changed, 35 insertions, 1 deletions
diff --git a/data/Makefile.am b/data/Makefile.am index 7623d46..585f071 100644 --- a/data/Makefile.am +++ b/data/Makefile.am @@ -30,7 +30,7 @@ mimedir = $(datadir)/mime/packages mime_DATA = $(mime_xml_files) nmservicedir = $(sysconfdir)/dbus-1/system.d/ -nmservice_DATA = NetworkManagerInfo.conf +nmservice_DATA = nm-user-settings.conf install-data-hook: if ENABLE_UPDATE_MIMEDB diff --git a/data/nm-user-settings.conf b/data/nm-user-settings.conf new file mode 100644 index 0000000..af7c642 --- /dev/null +++ b/data/nm-user-settings.conf @@ -0,0 +1,34 @@ +<!DOCTYPE busconfig PUBLIC + "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN" + "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd"> +<busconfig> + <policy user="root"> + <allow own="org.freedesktop.NetworkManagerUserSettings"/> + + <allow send_destination="org.freedesktop.NetworkManagerUserSettings"/> + <allow send_interface="org.freedesktop.NetworkManagerSettings"/> + + <!-- Only root can get secrets --> + <allow send_interface="org.freedesktop.NetworkManagerSettings.Secrets"/> + </policy> + <policy at_console="true"> + <allow own="org.freedesktop.NetworkManagerUserSettings"/> + + <allow send_destination="org.freedesktop.NetworkManagerUserSettings"/> + <allow send_interface="org.freedesktop.NetworkManagerSettings"/> + + <!-- Only root can get secrets --> + <deny send_interface="org.freedesktop.NetworkManagerSettings.Secrets"/> + </policy> + <policy context="default"> + <deny own="org.freedesktop.NetworkManagerUserSettings"/> + + <allow send_destination="org.freedesktop.NetworkManagerUserSettings"/> + <allow send_interface="org.freedesktop.NetworkManagerSettings"/> + <!-- Only root can get secrets --> + <deny send_interface="org.freedesktop.NetworkManagerSettings.Secrets"/> + </policy> + + <limit name="max_replies_per_connection">512</limit> +</busconfig> + |