1 |
On Mon, Oct 06, 2008 at 02:27:11PM +0200, Daniel Pielmeier wrote: |
2 |
> 2008/10/6 Erik Hahn <erik_hahn@×××.de>: |
3 |
> > No, it simply shouldn't change them, there's no reason to do that (to my |
4 |
> > knowledge). |
5 |
> |
6 |
> I think it is a big security issue if a normal user could start |
7 |
> arbitrary daemons with root privileges. So you should file a bug at |
8 |
|
9 |
It doesn't give anyone root privileges, it only sets wrong variables. |
10 |
|
11 |
> I think only root should be able to execute start-stop-daemon and the |
12 |
> user should be changed with the proper command line switches. I |
13 |
> actually don't know if it is --chuid or --user as this has changed |
14 |
> between old baselayout and new openrc. |
15 |
|
16 |
Why's that? Running a program with user privileges is no security |
17 |
problem at all. |
18 |
|
19 |
-Erik |
20 |
|
21 |
-- |
22 |
hackerkey://v4sw5hw2ln3pr5ck0ma2u7LwXm4l7Gi2e2t4b7Ken4/7a16s0r1p-5.62/-6.56g5OR |