This was actually done deliberately. On desktops we install the
policykit-desktop-privileges package, which allows users to mount
internal hard drives and set the system clock without having to
authenticate. As in these environments you usually have physical
hardware access anyway, there's not much to be gained from not allowing
access here.
Please note that this doesn't apply to mkfs or partitioning changes,
just mounting.
** Changed in: udisks (Ubuntu)
Status: Confirmed => Invalid
** Package changed: policykit-1 (Ubuntu) => policykit-desktop-privileges
(Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
https://bugs.launchpad.net/bugs/614717
Title:
Security risk in mounting hard disks
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
