| 1 |
On 4/9/13 10:15 PM, Mike Frysinger wrote: |
| 2 |
> i plan on updating the latest glibc to add USE=suid. in pkg_preinst and |
| 3 |
> ROOT==/, the ebuild will read /proc/mounts for a devpts line with gid=5. if |
| 4 |
> it doesn't find one, i'll have it call `die`. if the bsd pty scenario wasn't |
| 5 |
> long dead, and the devpts option didn't have gid=/mode= options, then it might |
| 6 |
> be reasonable to have it warn and do `chmod +s`. but i can't think of any |
| 7 |
> legitimate reasons for not using devpts & mounting it correctly. this is the |
| 8 |
> right answer even in the embedded world. |
| 9 |
|
| 10 |
+1 |
| 11 |
|
| 12 |
I have it disabled already on some of my systems using suidctl. |
| 13 |
|
| 14 |
I was going to suggest making that change some time ago - great to hear |
| 15 |
it's being done. Thanks for working on this! |
| 16 |
|
| 17 |
Paweł |
Archives