[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Excessive root usage in Debian

On Mon, Oct 11, 1999 at 05:16:59PM -0700, Joey Hess wrote:
> There's very little point in auditing programs that run as root unless they
> a) Take input form some source a non-root user might control.
> or
> b) Can be started as root by a non-root user.

or c) Have bugs, or other undesirable and unexpected behaviour.

See Bug#43094, for example.

Limiting the effect of stupid bugs is a good idea --- that's why we have
stable after all; if we can make stupid bugs even less likely to trash
the entire system, that's a good thing.

I'm not convinced this is an incredibly easy thing to do, though...


Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. PGP encrypted mail preferred.

 ``The thing is: trying to be too generic is EVIL. It's stupid, it 
        results in slower code, and it results in more bugs.''
                                        -- Linus Torvalds

Attachment: pgp2Qrk65uMmH.pgp
Description: PGP signature

Reply to: