Re: AuthorizationRef, AuthorizationCopyRights, with less user interaction
Re: AuthorizationRef, AuthorizationCopyRights, with less user interaction
- Subject: Re: AuthorizationRef, AuthorizationCopyRights, with less user interaction
- From: Finlay Dobbie <email@hidden>
- Date: Thu, 10 Mar 2005 22:54:23 +0000
On Thu, 10 Mar 2005 17:31:59 -0500, Jesse Grosjean
<email@hidden> wrote:
> My goal is to allow my application to call the IOPMSchedulePowerEvent()
> and IOPMCancelScheduledPowerEvent() functions without requiring the
> user to authorize (enter admin password) each time my application is
> launched. I'm not sure if I'm going about this the right way, here is
> my reasoning so far:
Look at MoreAuthSample and the auth services conceptual/reference
documentation. Study in detail. You're missing the key point about
making your helper tool setuid root. If it's setuid root, then every
time you execute it it will run as root without authentication. BE
CAREFUL, though, as this can be a massive security hole.
-- Finlay
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden