Bug 781071

Summary: AUDIT-0: NetworkManager-iodine
Product: [openSUSE] openSUSE 12.2 Reporter: Malcolm Lewis <malcolmlewis>
Component: OtherAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: dimstar, meissner, zaitor
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Community User Services Priority:
Business Priority: Blocker: No
Marketing QA Status: --- IT Deployment: ---

Description Malcolm Lewis 2012-09-19 01:47:56 UTC 
Hi
I wish to submit NetworkManager-iodine to GNOME:Factory, however it fails build due to the following;

E: badness 10000 exceeds threshold 1000, aborting.
NetworkManager-iodine.x86_64: E: suse-dbus-unauthorized-service (Badness: 10000) /etc/dbus-1/system.d/nm-iodine-service.conf
The package installs a DBUS system service file. If the package is intended
for inclusion in any SUSE product please open a bug report to request review
of the service by the security team.

Can the Security Team please review the attached nm-iodine-service.conf file.

Also, to build on OBS, I've created a temporary rpmlintrc file to ensure build completes.

Full package is here;
https://build.opensuse.org/package/show?package=NetworkManager-iodine&project=home%3Amalcolmlewis%3ATESTING
Comment 1 Bjørn Lie 2013-02-17 07:01:11 UTC 
I'm starting to think the email adr is the wrong one. 

PING sec team!
Comment 2 Sebastian Krahmer 2013-02-18 09:23:04 UTC 
Given that the config contains

        <policy context="default">
                <deny own="org.freedesktop.NetworkManager.iodine"/>
                <deny send_destination="org.freedesktop.NetworkManager.iodine"/>
        </policy>


and we dont relax that, it should be OK, as no users can contact
this service.
Marcus, can you add it to the appropriate files?
Comment 3 Marcus Meissner 2013-02-18 09:33:28 UTC 
Bjoern, we were just very busy the last months. sorry for the delay.

Submitted whitelist entry for this for Factory.
Comment 4 Bernhard Wiedemann 2013-02-19 15:00:09 UTC 
This is an autogenerated message for OBS integration:
This bug (781071) was mentioned in
https://build.opensuse.org/request/show/155817 Factory / rpmlint