Return-Path: Message-ID: From: Claudio Takahasi To: bluez-devel@lists.sourceforge.net Subject: Re: [Bluez-devel] [DBUS Patch] Device Property In-Reply-To: <1132872886.3170.3.camel@blade> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 References: <3013cac80511040603k52c40da2gae5249abcba426d9@mail.gmail.com> <20051118082828.GA16438@localhost.localdomain> <3013cac80511180251w1d2fa8f5s80ce1da7318327e7@mail.gmail.com> <20051118112611.GA17062@localhost.localdomain> <3013cac80511180500h5539d5d9y3f19ce224f9e38b7@mail.gmail.com> <1132660308.28644.37.camel@blade> <3013cac80511221152t2911f513jb28f3944097c1b09@mail.gmail.com> <1132805822.5982.15.camel@blade> <3013cac80511241050o2f3d67aele639b2c69de41360@mail.gmail.com> <1132872886.3170.3.camel@blade> Sender: bluez-devel-admin@lists.sourceforge.net Errors-To: bluez-devel-admin@lists.sourceforge.net Reply-To: bluez-devel@lists.sourceforge.net List-Unsubscribe: , List-Id: BlueZ development List-Post: List-Help: List-Subscribe: , List-Archive: Date: Fri, 25 Nov 2005 11:47:34 -0200 Hi, IMHO, it's enough two level of security. My suggestion is create a bluezadmin group to allow the device setup operations(write operations). Read operations can be allowed to bluezusers and bluezadmin. Another point is only the root can own the service, I mean, Only the root can run the hcid daemon. /org/bluez/Manager - get default device - list adapters /org/bluez/Device/hciX - UP (*) - Down (*) - SetProperty (*) - GetProperty /org/bluez/Device/hciX/Controller /org/bluez/Device/hciX/Network /org/bluez/Device/hciX/Serial Configuration file suggestion: