mirror of
https://github.com/Lurkki14/tuxclocker.git
synced 2024-11-25 01:30:18 -06:00
1aaad1b02b
Fixes not being able to register on Ubuntu, but how did it work without this in the first place???
90 lines
3.4 KiB
XML
90 lines
3.4 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<!DOCTYPE busconfig SYSTEM "busconfig.dtd">
|
|
<busconfig>
|
|
|
|
<!-- Our well-known bus type, do not change this -->
|
|
<type>system</type>
|
|
|
|
<!-- Run as special user -->
|
|
<user>messagebus</user>
|
|
<!--<user>root</user>-->
|
|
|
|
<!-- Fork into daemon mode -->
|
|
<fork/>
|
|
|
|
<!-- We use system service launching using a helper -->
|
|
|
|
|
|
<!-- This is a setuid helper that is used to launch system services -->
|
|
|
|
|
|
<!-- Write a pid file -->
|
|
<!--pidfile>/run/dbus/pid</pidfile -->
|
|
<!--<pidfile>/home/jussi/tmp/dbus-pidfile</pidfile> -->
|
|
|
|
<!-- Enable logging to syslog -->
|
|
<syslog/>
|
|
|
|
<!-- Only allow socket-credentials-based authentication -->
|
|
<auth>EXTERNAL</auth>
|
|
|
|
<!-- Only listen on a local socket. (abstract=/path/to/socket
|
|
means use abstract namespace, don't really create filesystem
|
|
file; only Linux supports this. Use path=/whatever on other
|
|
systems.) -->
|
|
<!--listen>unix:path=/run/dbus/system_bus_socket</listen -->
|
|
<listen>unix:path=/tmp/tuxclocker-dbus-socket</listen>
|
|
|
|
<policy context="default">
|
|
<!-- All users can connect to system bus -->
|
|
<allow user="*"/>
|
|
|
|
<!-- Allow anyone to own -->
|
|
<allow own="*"/>
|
|
<allow send_type="method_call"/>
|
|
|
|
<!-- Signals and reply messages (method returns, errors) are allowed
|
|
by default -->
|
|
<allow send_type="signal"/>
|
|
<allow send_requested_reply="true" send_type="method_return"/>
|
|
<allow send_requested_reply="true" send_type="error"/>
|
|
|
|
<!-- All messages may be received by default -->
|
|
<allow receive_type="method_call"/>
|
|
<allow receive_type="method_return"/>
|
|
<allow receive_type="error"/>
|
|
<allow receive_type="signal"/>
|
|
|
|
<!-- Allow anyone to talk to the message bus -->
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus"/>
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus.Introspectable"/>
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus.Properties"/>
|
|
<!-- But disallow some specific bus services -->
|
|
<deny send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus" send_member="UpdateActivationEnvironment"/>
|
|
<deny send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus.Debug.Stats"/>
|
|
<deny send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.systemd1.Activator"/>
|
|
</policy>
|
|
|
|
<!-- Only systemd, which runs as root, may report activation failures. -->
|
|
<policy user="root">
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.systemd1.Activator"/>
|
|
</policy>
|
|
|
|
<!-- root may monitor the system bus. -->
|
|
<policy user="root">
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus.Monitoring"/>
|
|
</policy>
|
|
|
|
<!-- If the Stats interface was enabled at compile-time, root may use it.
|
|
Copy this into system.local.conf or system.d/*.conf if you want to
|
|
enable other privileged users to view statistics and debug info -->
|
|
<policy user="root">
|
|
<allow send_destination="org.freedesktop.DBus" send_interface="org.freedesktop.DBus.Debug.Stats"/>
|
|
</policy>
|
|
|
|
<servicehelper>/run/wrappers/bin/dbus-daemon-launch-helper</servicehelper>
|
|
|
|
<includedir>/usr/share/dbus-1/system.d</includedir>
|
|
<servicedir>/usr/share/dbus-1/system-services</servicedir>
|
|
</busconfig>
|