From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 29302 invoked by uid 1002); 17 May 2003 19:47:30 -0000 Mailing-List: contact gentoo-dev-help@gentoo.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Received: (qmail 18498 invoked from network); 17 May 2003 19:47:30 -0000 Date: Sat, 17 May 2003 21:47:21 +0200 From: torbenh@gmx.de To: gentoo-dev@gentoo.org Message-ID: <20030517194721.GA18223@loco.wg.netz> Mail-Followup-To: gentoo-dev@gentoo.org References: <200305170143.28145.danarmak@gentoo.org> <20030517134847.GA22348@orange-pc.ces.clemson.edu> <1053190234.11920.52.camel@nosferatu.lan> <200305172149.37763.danarmak@gentoo.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="ikeVEW9yuYc//A+q" Content-Disposition: inline In-Reply-To: <200305172149.37763.danarmak@gentoo.org> User-Agent: Mutt/1.4i Subject: Re: [gentoo-dev] New local use flag for arts: artswrappersuid X-Archives-Salt: 27265241-52ce-441f-8100-a3e7785583c2 X-Archives-Hash: b46ca2e6c5be24b7f5fa28affb05db84 --ikeVEW9yuYc//A+q Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, May 17, 2003 at 09:49:32PM +0300, Dan Armak wrote: Content-Description: signed data > Well, security isn't my home turf, so since everyone thinks a global flag= is=20 > OK, I won't object :-) (Spider already replied to me privately suggesting= the=20 > same thing, but then seemed to change his mind, or maybe I just misunders= tood=20 > him. Anyhow, what do other people think, in particular our security peopl= e?.) >=20 > Just that as I said to him, it would have to be on by default and=20 > defined as: "Turn off this flag to enable highly insecure default=20 > configurations for the sake of performance - for fully trusted environmen= ts=20 > only". That could even be a global "security" flag, not just "suid". But = it's=20 > ok with me either way. Opinions? i dont like the idea of a global suid flag. an alternative would be to implement this feature with sudo and have a sudo-update script which creates an autogenerated script in a path which is scanned prior to /usr/bin... i am not sure how this script will be unmerged, but it could be ok if sudo-update added the script to /var/db/pkg/*/*/CONTENTS.... This seems a little safer to me... but much more hassle of course. --=20 torben Hohn http://galan.sourceforge.net -- The graphical Audio language --ikeVEW9yuYc//A+q Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+xpHJqkraZw1SQFYRAjiMAJ9i/FZMFOu6n9wsQprgC5EVnaWj6gCbBwGR hD2wQlGA+LLef/8mj1Xx4Yw= =ooBA -----END PGP SIGNATURE----- --ikeVEW9yuYc//A+q--