Card only available to root user
Peter Lebbing
peter at digitalbrains.com
Sat Aug 6 18:40:46 CEST 2011
On 06/08/11 19:50, Luis de Bethencourt wrote:
> Thanks for that information! I agree with you that if could also have a similar
> ACL in my gentoo machine it would work. Where is this set?
Unfortunately, I don't know much, hardly anything, about ConsoleKit and friends.
I suppose it is related to the following snippets out of the following files:
/lib/udev/rules.d/60-gnupg.rules:
ATTR{idVendor}=="04e6", ATTR{idProduct}=="5115", ENV{ID_SMARTCARD_READER}="1",\
ENV{ID_SMARTCARD_READER_DRIVER}="gnupg"
/lib/udev/rules.d/70-acl.rules:
# smart-card readers
ENV{ID_SMARTCARD_READER}=="*?", TAG+="udev-acl"
[...]
# apply ACL for all locally logged in users
TAG=="udev-acl", TEST=="/var/run/ConsoleKit/database", \
RUN+="udev-acl --action=$env{ACTION} --device=$env{DEVNAME}"
Here I picked a somewhat random vendor/product-id that is matched in the first
file. You might need a lot more configuration to get it working, I don't know.
By the way, I added the \ in the snippet from the first file, but not in the
second; that one was already there.
Good luck,
Peter.
--
I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at http://wwwhome.cs.utwente.nl/~lebbing/pubkey.txt
More information about the Gnupg-users
mailing list