From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Kmuhr-0002sm-Iu for garchives@archives.gentoo.org; Mon, 06 Oct 2008 18:21:19 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id A0702E0128; Mon, 6 Oct 2008 18:21:17 +0000 (UTC) Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by pigeon.gentoo.org (Postfix) with SMTP id CE791E0128 for ; Mon, 6 Oct 2008 18:21:16 +0000 (UTC) Received: (qmail invoked by alias); 06 Oct 2008 18:21:14 -0000 Received: from p549ECE70.dip.t-dialin.net (EHLO localhost) [84.158.206.112] by mail.gmx.net (mp029) with SMTP; 06 Oct 2008 20:21:14 +0200 X-Authenticated: #43117208 X-Provags-ID: V01U2FsdGVkX19cTNsmQdVc1GFh5OiFjUoClmcrxnHIGsdGdJxyHl 1ZN04+MMmZ+f8l Date: Mon, 6 Oct 2008 20:21:11 +0200 From: Erik Hahn To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] start-stop-daemon sets USER=root - expected behaviour? Message-ID: <20081006182111.GA19486@eriks> Mail-Followup-To: gentoo-user@lists.gentoo.org References: <20081005120138.GA2022@eriks> <48E90D61.5070009@gnoo.eu> <20081005210117.GA2897@eriks> <48E9B336.8000401@gnoo.eu> <20081006114328.GA5533@eriks> <6142e6140810060527k22cc80act5eb52d8fd03b224d@mail.gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <6142e6140810060527k22cc80act5eb52d8fd03b224d@mail.gmail.com> User-Agent: Mutt/1.5.18 (2008-05-17) X-Y-GMX-Trusted: 0 X-FuHaFi: 0.67 X-Archives-Salt: de8cdfa6-8b37-489d-9907-37eeb3adfa23 X-Archives-Hash: 4210c1cd871073f16e02673008dd3d83 On Mon, Oct 06, 2008 at 02:27:11PM +0200, Daniel Pielmeier wrote: > 2008/10/6 Erik Hahn : > > No, it simply shouldn't change them, there's no reason to do that (to my > > knowledge). > > I think it is a big security issue if a normal user could start > arbitrary daemons with root privileges. So you should file a bug at It doesn't give anyone root privileges, it only sets wrong variables. > I think only root should be able to execute start-stop-daemon and the > user should be changed with the proper command line switches. I > actually don't know if it is --chuid or --user as this has changed > between old baselayout and new openrc. Why's that? Running a program with user privileges is no security problem at all. -Erik -- hackerkey://v4sw5hw2ln3pr5ck0ma2u7LwXm4l7Gi2e2t4b7Ken4/7a16s0r1p-5.62/-6.56g5OR