Re: Bug#4673: ppp insecure

To: debian-devel@lists.debian.org
Subject: Re: Bug#4673: ppp insecure
From: Guy Maor <maor@ece.utexas.edu>
Date: 13 Nov 1996 09:55:06 -0600
Message-id: <87ralyrnvp.fsf@slip-53-13.ots.utexas.edu>
In-reply-to: Christoph Lameter's message of Wed, 13 Nov 1996 07:21:29 -0800 (PST)
References: <Pine.LNX.3.95.961113071833.17828A-100000@waterf.org>

Christoph Lameter <clameter@waterf.org> writes:

> I have an issue with several packages that I would like to keep some or
> other form of suid bit on it (netdiag,ppp,debmake).

I adamantly disagree with your whole philosophy of adding suid bits to
random packages, and I really wish you would remove them from all
three of the above.  You're just opening Debian up to a Pandora's box
of security problems.

Programs like sudo and super can handle this behavior in a much better
way - by giving specific users permission to execute specific
commands.

Guy

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com

Reply to:

Prev by Date: Re: Wanted: converter of HTML links
Next by Date: metamail_2.7-14
Previous by thread: Master's public debian disk is getting full [again].
Next by thread: Re: Bug#4673: ppp insecure
Index(es):
- Date
- Thread