Package: acpi-support-base Version: 0.123-1 /etc/acpi/powerbtn-acpi-support.sh contains the following stanza:
------------------
# If powersaved is running, let it process the acpi event
if pidof powersaved; then
exit 0
fi
------------------
It appears that any user can therefore disable any action taken by the
power button by doing something like:
cp $(which yes) powersaved
nohup ./powersaved >/dev/null &
This seems problematic: i wouldn't expect an arbitrary, non-privileged
local user to be able to override a standard piece of system
functionality without having been explicitly granted privileges to do so.
--dkg
signature.asc
Description: OpenPGP digital signature
