Andy Wingo <wi...@igalia.com> skribis:
> On Thu 20 Aug 2015 17:09, l...@gnu.org (Ludovic Courtès) writes:
>
>>> +@defvr {Scheme Variable} %standard-geoclue-applications
>>> +The standard list of well-known GeoClue application configurations,
>>> +granting authority to GNOME's date-and-time utility to ask for the
>>> +current location in order to set the time zone, and allowing the Firefox
>>> +(IceCat) and Epiphany web browsers to request location information.
>>> +Firefox and Epiphany both query the user before allowing a web page to
>>> +know the user's location.
>>> +@end defvr
>>
>> Does that mean that all these applications get blanket access to
>> location info, and just happen to be nice enough to ask the user?
>>
>> If the answer is yes, I would rather remove the Web browsers from this
>> list by default.
>
> I think that's right. I'm still figuring some of this out :P But yeah,
> I think the reasoning is that since web browsers ask you already, don't
> default to giving the web access, and you already trust the web browser
> in other ways, that this is a reasonable default that prevents
> double-asking.
OK. But then that raises the question of how applications are
authenticated: if I call my binary ‘epiphany’, will GeoClue consider it
to be the authorized application? (Sorry for the newbie question...)
> I guess ideally it would be going through policykit and asking the user
> through the session manager. Maybe that's a TODO; dunno.
My only concern is to make sure the default settings are
privacy-preserving. I realize that’s a question that goes beyond GuixSD
itself though.
Thank you,
Ludo’.
