Re: setgid

To: debian-devel-games@lists.debian.org
Subject: Re: setgid
From: Paul Wise <pabs@debian.org>
Date: Wed, 17 Apr 2013 01:04:45 +0800
Message-id: <[🔎] CAKTje6GY3eeeGt=RKJ0XSD1ZgXkOjLADfb3eSogsOvi=2qtOyg@mail.gmail.com>
In-reply-to: <[🔎] CANwYTAS9iBZbgyQnsTYT0RSkoneKCSB72z26DBF3PDP1yCyJUQ@mail.gmail.com>
References: <[🔎] CANwYTAS9iBZbgyQnsTYT0RSkoneKCSB72z26DBF3PDP1yCyJUQ@mail.gmail.com>

On Wed, Apr 17, 2013 at 12:36 AM, Alexandre Dantas wrote:

> I'm currently packaging a simple snake game that needs access to
> /var/games/<package-name>/high-scores.
> Upstream builds it with setgid 'root:games', but dh_fixperms cancels that
> out. Is it really necessary to give such elevated privileges to it's
> executable?

It is only necessary if upstream wants to implement single-system
multi-user high scores files.

> If it is, a previous post on this mail list [0] suggests dropping this
> privilege as soon as possible. Should I instruct the upstream to comply to
> this?

If they insist on using system-wide multiuser high scores then yes
they should do that.

I would argue that single systems for gaming are usually single-user
and that an alternative would be to make the high-scores per-user and
stored in their home dir but give them the option to submit their high
scores to a website or web API (via SSL).

Please also point them at these two wiki pages:

http://www.freedesktop.org/wiki/Games/Upstream
http://wiki.debian.org/UpstreamGuide

-- 
bye,
pabs

http://wiki.debian.org/PaulWise

Reply to:

References:
- setgid
  - From: Alexandre Dantas <alex.dantas92@gmail.com>

Prev by Date: setgid
Next by Date: Re: Bug#696899: can anybody sponsor an ITP for premake4 ?
Previous by thread: setgid
Next by thread: Darkplaces commits
Index(es):
- Date
- Thread