Control: forwarded -1 https://phabricator.kde.org/D12656 I'm not sure if bts link supports phabricator, let's see how this goes. ¡Hola Anthony! El 2018-05-01 a las 18:01 -0400, Anthony DeRobertis escribió:
Package: kactivitymanagerd Version: 5.12.1-1 Severity: important
Similar (but nowhere near as bad as) bug #805399, ActivityManager is logging files I access to the systemd journal & syslog. Some examples:
while hopefully the database itself is in my home director and mode go-rw, the same can't be said for syslog and journal. This violates user privacy on a multi-user system as the sysadmin is expected to read syslog, but respect the privacy of $HOME. In addition, syslog and journal are available to members of group adm, who may not have root.
From the journal, it appears that kactivymanagerd may be speweing this to stdout, which is ultimately being picked up by systemd (I think that's what _TRANSPORT of stdout means):
Upstream already accepted a patch for this, so it would be solved in the next release.
Happy hacking, -- "Seek simplicity, and distrust it." -- Whitehead's Rule Saludos /\/\ /\ >< `/
Attachment:
signature.asc
Description: PGP signature