On Mon, Oct 11, 1999 at 05:16:59PM -0700, Joey Hess wrote: > There's very little point in auditing programs that run as root unless they > > a) Take input form some source a non-root user might control. > or > b) Can be started as root by a non-root user. or c) Have bugs, or other undesirable and unexpected behaviour. See Bug#43094, for example. Limiting the effect of stupid bugs is a good idea --- that's why we have stable after all; if we can make stupid bugs even less likely to trash the entire system, that's a good thing. I'm not convinced this is an incredibly easy thing to do, though... Cheers, aj -- Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/> I don't speak for anyone save myself. PGP encrypted mail preferred. ``The thing is: trying to be too generic is EVIL. It's stupid, it results in slower code, and it results in more bugs.'' -- Linus Torvalds
Attachment:
pgpJBKmYlEr9N.pgp
Description: PGP signature