From: Colin Walters <walters@verbum.org>
Date: Tue, 9 Dec 2008 01:25:02 +0000 (-0500)
Subject: Bug 18229: Update manpage with better advice
X-Git-Tag: dbus-1.3.0~71^2
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=7f0990abc74a3c6aa76211a064b57f081690d340;p=thirdparty%2Fdbus.git

Bug 18229: Update manpage with better advice

See https://bugs.freedesktop.org/show_bug.cgi?id=18229
---

diff --git a/bus/dbus-daemon.1.in b/bus/dbus-daemon.1.in
index 7666f180f..94f073b91 100644
--- a/bus/dbus-daemon.1.in
+++ b/bus/dbus-daemon.1.in
@@ -416,6 +416,18 @@ set of connections to the bus. A policy is made up of
 they are analogous to a firewall in that they allow expected traffic 
 and prevent unexpected traffic.
 
+.PP
+Currently, the system bus has a default-deny policy for sending method calls 
+and owning bus names.  Everything else, in particular reply messages, receive
+checks, and signals has a default allow policy.
+
+.PP
+In general, it is best to keep system services as small, targeted programs which
+run in their own process and provide a single bus name.  Then, all that is needed
+is an <allow> rule for the "own" permission to let the process claim the bus
+name, and a "send_destination" rule to allow traffic from some or all uids to
+your service.
+
 .PP
 The <policy> element has one of three attributes:
 .nf
@@ -481,9 +493,7 @@ The possible attributes of these elements are:
 .PP
 Examples:
 .nf
-   <deny send_interface="org.freedesktop.System" send_member="Reboot"/> 
-   <deny receive_interface="org.freedesktop.System" receive_member="Reboot"/>
-   <deny own="org.freedesktop.System"/>
+   <deny send_destination="org.freedesktop.Service" send_interface="org.freedesktop.System" send_member="Reboot"/> 
    <deny send_destination="org.freedesktop.System"/>
    <deny receive_sender="org.freedesktop.System"/>
    <deny user="john"/>