elementary / switchboard-plug-security-privacy Goto Github PK
View Code? Open in Web Editor NEWSwitchboard Security & Privacy Plug
License: GNU General Public License v3.0
Switchboard Security & Privacy Plug
License: GNU General Public License v3.0
To reproduce:
Doesn't appear to be possible to disable collecting app usage data without going into full privacy mode.
Launchpad Details: #LP1491169 Daniel Fore - 2015-09-01 23:00:42 +0000
As it is right now creating rules for the firewall is a piece of cake. But it seems to be impossible to edit the "from" field, making rules rather moot for a lot of production environments, as 1433 incoming, for an example will allow IP's outside my LAN to access my Sql Server
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
For Example (maya-calendar):
Running licensecheck on the maya-calendar sources reports that some of the files which include licensing information include the wrong FSF address.
$ licensecheck -r . | awk -F ": " '{ print $2 }' | sort | uniq -c | sort -gr
163 No copyright UNKNOWN
101 UNKNOWN
38 GPL (v3 or later)
6 LGPL (v2 or later) (with incorrect FSF address)
4 No copyright GENERATED FILE
4 BSD (2 clause)
3 No copyright GPL (v3 or later)
2 LGPL (v2.1 or later)
The affected files are:
$ licensecheck -r . | grep incorrect
./core/Backends/Backend.vala: LGPL (v2 or later) (with incorrect FSF address)
./core/Backends/BackendsManager.vala: LGPL (v2 or later) (with incorrect FSF address)
./core/Backends/LocalBackend.vala: LGPL (v2 or later) (with incorrect FSF address)
./core/Backends/PlacementWidget.vala: LGPL (v2 or later) (with incorrect FSF address)
./plugins/CalDAV/CalDAVBackend.vala: LGPL (v2 or later) (with incorrect FSF address)
./plugins/Google/GoogleBackend.vala: LGPL (v2 or later) (with incorrect FSF address)
Package checkers / linters (for example the compulsory fedora one - rpmlint) complain very verbosely about this.
Launchpad Details: #LP1653413 Fabio Valentini - 2017-01-01 11:16:13 +0000
As Translators need to blindly translate strings, some translators aren't understanding the meaning of the string below and it's singular form. We need to document it in the POT file and make it in our Weblate,
When I try to open Security&Privacy Plug, crash occurs
[ERROR 13:57:18.654539] [GLib-GIO] Settings schema 'org.pantheon.security-privacy' is not installed
Since we're going to be adding more pages for agents like Location, the name "Privacy" no longer makes sense since that name will apply to several pages.
We're going to have to come up with a better name like "History" or "Usage Data" or something
Launchpad Details: #LP1668083 Daniel Fore - 2017-02-26 17:49:17 +0000
In the affected plugs, pressing the tab key while the sidebar is focused toggles through the list of items in the sidebar instead of giving focus to the next widget in the plug. This makes navigation of the plugs by keyboard difficult.
Feel free to mark this as invalid if it's intended behavior but it feels as though the up and down keys should control the selected item in the sidebar (which they do) and the tab key should allow you tab across to the first item in the main part of the plug.
Launchpad Details: #LP1668344 David Hewitt - 2017-02-27 17:19:28 +0000
fogot password elementary os
Create a tab in Switchboard Plug Security & Privacy for location settings that lists all apps connected to GeoClue2 and allows enabling/disabling access
Launchpad Details: #LP1446770 Mathias - 2015-04-21 17:35:42 +0000
_LOG_LEVEL_DEBUG 23:20:07.416527] sql-schema.vala:204: schema_version is 10
[_LOG_LEVEL_WARN 23:20:07.491808] [GLib-GIO] Settings schema 'org.gnome.desktop.screensaver' does not contain a key named 'ubuntu-lock-on-suspend'
Trace/breakpoint trap
.. And then crash :(
Launchpad Details: #LP1359978 beta992 - 2014-08-21 21:21:01 +0000
I noticed the Housekeeping URL never got added to any documentation. I'm working on a revision to the spec over at https://github.com/elementary/switchboard/wiki/System-Settings-Schema-Specification based on our usage over the past several years and thinking about the abstract implementations that could exist across desktops. I think a top-level settings://privacy
probably makes more sense in the long-run, since:
The relevant updated URLs for this plug would be:
Link | Description | Fallback(s) |
---|---|---|
settings://security |
Manage overall security | settings |
settings://security/firewall |
Manage firewall settings in particular | security, settings |
settings://security/locking |
Manage system locking behavior | security, settings |
settings://privacy |
Manage system privacy | settings |
settings://privacy/location |
Manage location services privacy | privacy, settings |
settings://privacy/trash |
Manage automatic deletion of temp and trash files | privacy, settings |
Tried in system settings / security and privacy to untick ask for password
Tried in user accounts to set password to none
But it is always needed to type my passwd after wakeing up from suspend...
Launchpad Details: #LP1377713 Cheesymoon - 2014-10-05 19:30:04 +0000
In elementary OS, there are two notation of same meaning: "sleep" and "suspend".
Most of the notation are "suspend", but there are one word "sleep" here:
Considering the quantity of the words, I suppose it's easier to change the string above to "suspend", but it's okay to unify to "sleep". In short, I think it would be better to unify the notation to either "sleep" or "suspend" across the whole OS.
The housekeeping layout in Onboarding is more compact, but it's also just less repetitive. We should update the copy and possibly layout here to better match.
or a solution that is more appropriate. A solution where users do not have to use the terminal to know & handle autoremove commands.
I guess, that due to the regular kernel image updates, 90% of my boot partition is now filled. I received a desktop notification during my last update.
I wonder how self-explanatory this notification is for everyday users. It doesn't offer me any options for what I can do or informs me about the consequences if I don't react at times.
Somehow the issue doesn't fit with Security & Privacy, does it?
However, since the housekeeping function is also located here, I can't think of any other place where the ticket could fit in well. Please feel free to move it to a more suitable place!
Is your feature request related to a problem? Please describe.
It is more of a discussion question to improve the wording if necessary.
I've made this setting: "Old files can be deleted automatically after 0 days to save space and protect your privacy".
I wonder if it doesn't make sense to explain to users at this point what "after 0 days" means. Or whether this concrete setting should simply state: "Temporary and deleted files are not stored on your computer at all". But these files have to be stored somewhere until they are deleted "after 0 days", right? Or are temporary files never created and stored in this mode?
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
Hi,
Tried a lot of options to use drag and drop option from host system to Elementary OS, but no success.
As far as i know, there is no such a problem in Ubuntu's latest version.
It would be great if there is such an option.
Thanks
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
Please check what applies:
-->
An early reply is highly appreciated thank you 😊
This has been removed in Gtk4
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
Re-reading the current blurb on the history page, it's not immediately clear that this data is generated and stored locally, and never shared. We could rephrase it to make it a bit more clear.
The GUI of the Firewall is not working properly, it shows it's not activated; I opened the terminal and introduced the "sudo ufw status" command and it said it was "Active".
To anyone who reads this; thank you for your time.
It's come to my attention that the settings for both UFW and firewalld can be overridden at a lower level by certain software packages.
If at all possible, we should have some way to check for these open ports and display them in the UI. But at a minimum, we should have some kind of warning information that this is a thing that can occur and that there might be rules somewhere else on the system that are opening other ports.
Launchpad Details: #LP1658398 Daniel Fore - 2017-01-22 05:49:02 +0000
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
Hi, could you add translation files for Silesian?
ISO 639-3: szl
Plurals: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);
Thank you!
The firewall works as a frontent for ufw but it is not able to show many of ufw's configurations properly. The attached screenshot is from my firewall window and here is the same ufw configuration from the cli:
To Action From
-- --------- -
[ 1] 22 ALLOW IN Anywhere
[ 2] 5900 ALLOW IN Anywhere
[ 3] 9091 ALLOW IN Anywhere
[ 4] Anywhere DENY IN 146.66.156.0/23
[ 5] Anywhere DENY IN 185.25.180.0/23
[ 6] Anywhere DENY IN 155.133.240.0/22
[ 7] 146.66.156.0/23 DENY OUT Anywhere (out)
[ 8] 185.25.180.0/23 DENY OUT Anywhere (out)
[ 9] 155.133.240.0/22 DENY OUT Anywhere (out)
Functionality missing comparing to ufw:
Why this is all important on simple setups:
Aditional thoughts:
Launchpad Details: #LP1624907 ovdeathiam - 2016-09-18 17:55:30 +0000
Lewis brought up the idea of locking the session when a bluetooth device disconnects. This would mean that for example walking away from the computer should lock the screen.
I think that we would need to do some kind of roundtripping and not just watch for a disconnect to make sure we're getting a good idea of proximity.
Launchpad Details: #LP1593546 Daniel Fore - 2016-06-17 04:18:35 +0000
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
The Security Privacy Manager caused both Plank and Wingpanel to suddenly disappear after an Update.
By launching it manually, i found out, it was related to some SEGFAULT. I couldnt figure out where or when it happens.
What solved my Problem was to uninstall the Security Privacy Manager.
sudo apt remove switchboard-plug-security-privacy
It´s very hard for me to give further information on the issue, as I switched to arch linux with kde recently. Even if i reinstalled elementary, it is very unlikely, that it occurs again.
Instead of asking the user to authenticate beforehand, we should ask them to authenticate if they try to do something that requires permissions
It looks like Epiphany has an open issue for setting incognito mode as the default. It could be interesting to automatically toggle this setting along with the history toggle in the plug.
https://gitlab.gnome.org/GNOME/epiphany/issues/300#note_290611
Admin things are expected to be annoying like that
Launchpad Details: #LP1407792 Cody Garver - 2015-01-05 20:55:42 +0000
Currently, a lot of the code that handles the InfoBar and lock button for the Firewall page are in Plug.vala. Considering the re-design where each view now has its own space and the InfoBar doesn't go right across the top of the window anymore, it makes more sense to try and move this into FirewallPanel.vala and have each panel handle polkit requests where needed.
Launchpad Details: #LP1668384 David Hewitt - 2017-02-27 20:02:15 +0000
The Security & Privacy plug crashes on launch if the "org.pantheon.dpms" GSettings key is not installed on the system. This dependency is not mentioned nowhere - also, the repository providing this file is somewhat hard to find on launchpad.
Launchpad Details: #LP1639891 Fabio Valentini - 2016-11-07 18:18:32 +0000
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
"Lock after screen turns off" option is not working, it always locks either way, plus it takes too long just to turn the screen off.
Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
The "Security & Privacy" plug should turn up as a result.
No search results.
I believe this service is already provided by the gsd-housekeeping process ( see https://gitlab.gnome.org/GNOME/gnome-settings-daemon/blob/master/plugins/housekeeping/gsd-disk-space.c) so we just need to provide a user interface.
Show whether history is enabled or disabled in the sidebar :)
Launchpad Details: #LP1668448 Daniel Fore - 2017-02-28 00:10:51 +0000
We need a page to show the status of disk encryption and for changing the encryption password if the disk is encrypted
This plug currently requires ufw and executes ufw commands through pkexec to apply rules.
However, a better approach would be to use FirewallD1 and communicate with it via D-Bus. This also has the advantage of making it less brittle as communication via D-Bus is easier to manage than pkexec calls and allows for more granular privilege control (reducing the need to escalate privileges to merely when you need to write new rules).
FirewallD also supports a service-oriented model for managing firewall rules. For example, if you're controlling via the CLI, to close the SSH port, you can just do "firewall-cmd --remove-service=ssh" instead of having to specify to remove port 22. This enables you to make the plug simpler and describe things in terms of services, rather than in terms of ports.
You can, of course, still specify ports and stuff. Via the CLI, it's merely "firewall-cmd --(add|remove)-port=/(tcp|udp)".
It also has a concept of zones, so you can expose that if you'd like as well.
Everything about FirewallD is available via D-Bus, and all the tools currently written use D-Bus to communicate with it.
FirewallD is available as "firewalld" in Ubuntu.
Launchpad Details: #LP1639775 Neal Gompa - 2016-11-07 12:15:26 +0000
There is a bounty for this issue on Bountysource
In corporate or enterprise environments, listing all the user accounts on the login screen (greeter) is not feasible, either due to security or because of network logins (such as Active Directory and Open Directory).
Please add an option that configures Pantheon Greeter to hide the users list and instead show a username/password login box.
Launchpad Details: #LP1545112 Nathan Dyer - 2016-02-12 19:01:21 +0000
I guess it's possible someone would want to open an IPv6 port on their home machine but it's not likely
Launchpad Details: #LP1312461 Cody Garver - 2014-04-24 22:51:52 +0000
For reference: https://docs.google.com/document/d/1N0uqNtVXEFn3cLgNMeN75mP_dpMpCco-7uw5PKow-_Q/edit?usp=sharing
Launchpad Details: #LP1649664 Daniel Fore - 2016-12-13 19:02:33 +0000
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.