USB passthru opens a security hole, yet it is so valuable that many users want the feature, thus it is our default.
Previously, a user needed to edit a udev rule to disable passthru. The bad part was that an update of VB changed the
rule back to allow passthru without any notification. These changes modify the popup to allow the user to accept or decline
passthru. If the user declines, then the root password is requested and the udev rule is modified. As these modifications will be
lost with the next VB update, the inode of the udev rule is kept. If the user has previously declined and the inode has changed,
the popup will show the next time VB is started. File "fix_usb_rules.sh" is added.
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=336
the logic has been inverted. Now, the required udev commands to allow passthru are included. The first time that VB is started,
the user will get a screen that points to the bug entry discussing the problem and states what they should do to block the
insecure usage. In any case, that screen will only be printed once. File "virtualbox-60-vboxdrv.rules" has been added
These changes address the issues in bnc #1018340.
OBS-URL: https://build.opensuse.org/package/show/Virtualization/virtualbox?expand=0&rev=303
