1*18c2aff7Sartem<!DOCTYPE busconfig PUBLIC 2*18c2aff7Sartem "-//freedesktop//DTD D-BUS Bus Configuration 1.0//EN" 3*18c2aff7Sartem "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd"> 4*18c2aff7Sartem<busconfig> 5*18c2aff7Sartem 6*18c2aff7Sartem <!-- This configuration file specifies the required security policies 7*18c2aff7Sartem for the HAL to work. --> 8*18c2aff7Sartem 9*18c2aff7Sartem <!-- Only root or user @HAL_USER@ can own the HAL service --> 10*18c2aff7Sartem <policy user="@HAL_USER@"> 11*18c2aff7Sartem <allow own="org.freedesktop.Hal"/> 12*18c2aff7Sartem </policy> 13*18c2aff7Sartem <policy user="root"> 14*18c2aff7Sartem <allow own="org.freedesktop.Hal"/> 15*18c2aff7Sartem </policy> 16*18c2aff7Sartem 17*18c2aff7Sartem <!-- Allow anyone to invoke methods on the Manager and Device interfaces --> 18*18c2aff7Sartem <policy context="default"> 19*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Manager"/> 20*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device"/> 21*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Manager" 22*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 23*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Device" 24*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 25*18c2aff7Sartem 26*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.SystemPowerManagement"/> 27*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.LaptopPanel"/> 28*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume"/> 29*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume.Crypto"/> 30*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Device.SystemPowerManagement" 31*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 32*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Device.LaptopPanel" 33*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 34*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Device.Volume" 35*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 36*18c2aff7Sartem <allow receive_interface="org.freedesktop.Hal.Device.Volume.Crypto" 37*18c2aff7Sartem receive_sender="org.freedesktop.Hal"/> 38*18c2aff7Sartem </policy> 39*18c2aff7Sartem 40*18c2aff7Sartem <!-- Default policy for the exported interfaces --> 41*18c2aff7Sartem <policy context="default"> 42*18c2aff7Sartem <deny send_interface="org.freedesktop.Hal.Device.SystemPowerManagement"/> 43*18c2aff7Sartem <deny send_interface="org.freedesktop.Hal.Device.VideoAdapterPM"/> 44*18c2aff7Sartem <deny send_interface="org.freedesktop.Hal.Device.LaptopPanel"/> 45*18c2aff7Sartem <deny send_interface="org.freedesktop.Hal.Device.Volume"/> 46*18c2aff7Sartem <deny send_interface="org.freedesktop.Hal.Device.Volume.Crypto"/> 47*18c2aff7Sartem </policy> 48*18c2aff7Sartem 49*18c2aff7Sartem <!-- This will not work if pam_console support is not enabled --> 50*18c2aff7Sartem <policy at_console="true"> 51*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.SystemPowerManagement"/> 52*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.LaptopPanel"/> 53*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume"/> 54*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume.Crypto"/> 55*18c2aff7Sartem </policy> 56*18c2aff7Sartem 57*18c2aff7Sartem <!-- You can change this to a more suitable user, or make per-group --> 58*18c2aff7Sartem <policy user="0"> 59*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.SystemPowerManagement"/> 60*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.VideoAdapterPM"/> 61*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.LaptopPanel"/> 62*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume"/> 63*18c2aff7Sartem <allow send_interface="org.freedesktop.Hal.Device.Volume.Crypto"/> 64*18c2aff7Sartem </policy> 65*18c2aff7Sartem 66*18c2aff7Sartem</busconfig> 67*18c2aff7Sartem 68