/etc/polkit-1/rules.d and /usr/share/polkit-1/rules.d owned by polkitd with permissions of 0700
Hi,
Instructions provided by upstream from the ./configure are "The directory /etc/polkit-1/rules.d and /usr/share/polkit-1/rules.d must be owned by user 'polkitd' and have mode 700. However, from https://forums.centos.org/viewtopic.php?t=71539#p300838 and this older thread https://bugs.gentoo.org/444734 it looks like it could results in system compromise due to ability to rewrite rules.
Could you please give me your point of view and explanations on this subject.
Thank you Best regards