Mastodawn

At some point in the past 10 years, https://tootloop.com/@major 's excellent tutorial about enabling normal users to manage VMs with virsh stopped working on #Fedora. I'm wondering if the move to modularized libvirt a few years back is the reason. I think #RHEL 10 is using modularized #libvirt now as well.

Not a big deal for my purposes though, as my VM launch script already requires sudo to modify /etc/hosts
#KVM #Linux #polkit
https://major.io/p/run-virsh-and-access-libvirt-as-a-regular-user/

Major Hayden 🤠 (@major@tootloop.com)

630 Posts, 474 Following, 1.93K Followers · 🫡 Major is my first name, not a rank. 🤓 Linux nerd, Fedora contributor 💸 Novice stock & options trader 📻 Amateur radio operator (W5WUT) 🇪🇸 Learning Spanish / Aprendiendo español 🤠 Texas, USA

Toot Loop

The Linux Lighthouse Aug 20

Linux Security EXPOSED! The Truth About polkit on openSUSE Tumbleweed

https://www.youtube.com/watch?v=cFSVEdrCWwM

#opensuse #opensuseleap #opensusetumbleweed #leap #tumbleweed #microos #slowroll #aeon #leapmicro #suse #sysadmin #linux #LinuxSecurity #Polkit #LinuxTutorial #SystemAdministration #PolicyKit #SysAdmin #JavaScript #LinuxTips #DesktopLinux

Linux Security EXPOSED! The Truth About polkit on openSUSE Tumbleweed

YouTube

Marco Ivaldi Aug 7

A couple notable related writeups

A great primer on #dbus and #polkit that clearly shows how brittle they are
https://u1f383.github.io/linux/2025/05/25/dbus-and-polkit-introduction.html

An amazing #linux #kernel #vulnerability research and #exploit development writeup
https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/

DBus and Polkit Introduction

Inspired by @4ttil4sz1a’s post on the SSD-disclosure blog, I spent some time understanding how D-Bus and Polkit work on Ubuntu and other Unix-based Linux distributions, with the goal of exploring more kernel attack surfaces.

Blog

Dendrobatus Azureus Jul 29

I'm still puzzled by the fact that the distribution chose to do this

https://security.opensuse.org/2025/05/07/deepin-desktop-removal.html#2021-02-01-dtkcommon-filedrag-d-bus-service

#InfoSec #Linux #distribution #OpenSource #POSIX #POLKIT #DBUS

Schwerdtfegr (beta)Jul 28

Nutzt hier jemand einen kartenleser unter unbuntu linux?

Und das funkzjoniert nach dist-upgrade nicht mehr? Das hier hilft vielleicht.

#DirkHagedorn #Fail #Link #Linux #polkit #Ubuntu

Kurztipp: Kartenleser mit Ubuntu 24.04 LTS – Dirk Hagedorn

jablkoziemne Jul 18

Am I missing some #environmentVariable when running #dnf with #run0, it throws at me 203 #exitcode

I checked the run0 and dnf #manpage, but found nothing specific :/

Anyway, run0 still is better than #sudo, as i like having #gnome show me #polkit password dialog, and I know then at least I will enter that password into correct application.

#linux #fedora #systemd

Photonic Fae 🧚‍♀️Jun 26

sighs

The other day #PolKit updated or something related to it did on our #Gentoo installation and now our backlight asks for the root password whenever we want to lower or increase the brightness with the keyboard keys when it didn't before.

To be clear we can find nothing of use on the wiki etc, we have looked.

Can any of y'all help please?

#Linux #LinuxHelp #LinuxAdvice #AskFedi #LinuxSupport

Show thread

Diego Córdoba 🇦🇷Jun 24

2/3

* También depende del entorno gráfico: #gvfs (#gnome, #xfce) o el equivalente en #kde (creo que es #kio), que suelen montar en /run/media.

* Configuraciones personalizadas de #polkit pueden hacer que los usuarios puedan montar discos en diferentes ubicaciones.

* El mismo udisks2 permite cambiar configuraciones para montar automáticamente en otros directorios.

* Y por supuesto, el montaje manual y uso de /etc/fstab puede permitirnos montar directorios no estándar.

👇

I've daily-driven #OpenSuSE #Tumbleweed in the past. A coupe times, actually.

No real major complaints. Some issues were that the YaST-based installer was kind of obtuse (e.g., very easy to miss the option to set the hostname). I'm not one to hate on YaST. I don't need my configuration tool / systems-management tool to be all pretty or written in Flutter or whatever. But the installer was kind of obtuse, if featureful.

My biggest complaint is that they don't set up #PolKit out of the box, and you're expected to use the root password for things like setting up printers in the GUI. Not to be too snippy, but that was unacceptable in 2005, and it's crazy wrong-headed in 2025. But I know there's a way to set that up, so I need to look into it.

I'm very interested in OpenSuSE #SlowRoll. If that comes out in the next few months, that could be an awesome contender.

So, yeah, actually, thanks for reminding me to look into OpenSuSE some more.

I want to try #OpenSuSE #Tumbleweed again. My only turn-off from it was that zypper is a little slow as a cli package manager goes (not a huge deal), and that they didn't have #PolKit enabled by default, so setting up things like your printer required using the root password, which is brain dead.

I really hope they have that last one fixed, because it's just arguably the wrong approach, and should be treated as a bug.