Re: transition from suidmanager to dpkg-statoverride

To: debian-devel@lists.debian.org
Subject: Re: transition from suidmanager to dpkg-statoverride
From: Joey Hess <joeyh@debian.org>
Date: Thu, 11 Jan 2001 10:18:45 -0800
Message-id: <[🔎] 20010111101845.A19501@silk.kitenet.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010111101100.A26036@sawan.com.pl>; from robert@pingu.ii.uj.edu.pl on Thu, Jan 11, 2001 at 10:11:00AM +0100
References: <20010110142944.A14234@kitenet.net> <[🔎] 20010111101100.A26036@sawan.com.pl>

Robert Luberda wrote:
> What about dh_fixperms? 
> It probably still removes all suid/sgid bits.  Could it  be fixed to not 
> change permission of files listed in debian/suid?

The way this is supposed to work (and the way it has always and
continues to work) is you run dh_fixperms and either use -X to exclude
specific suid binaries from processing, or explicitly set the permissions
you need afterwards. Only then did dh_suidregister run, to register
those permissions. 

I like this because I'm paranoid; it ensures that no matter how the package's
Makefile is messed up, only the binaries I chose becomes s[ug]id.

That dh_suidregister no longer runs doesn't change the general scheme,
unless you unwisely used to call it *before* dh_fixperms. In that case
you'd need to add some -X's. But I don't see any need to make it look at
the .suid files.

-- 
see shy jo

Reply to:

Follow-Ups:
- Re: transition from suidmanager to dpkg-statoverride
  - From: jerome.marant@free.fr (Jérôme Marant)
- Re: transition from suidmanager to dpkg-statoverride
  - From: jerome.marant@free.fr (Jérôme Marant)

References:
- Re: transition from suidmanager to dpkg-statoverride
  - From: Robert Luberda <robert@pingu.ii.uj.edu.pl>

Prev by Date: Re: Packages' use of dpkg-statoverride
Next by Date: Re: limitation in build-depends
Previous by thread: Re: transition from suidmanager to dpkg-statoverride
Next by thread: Re: transition from suidmanager to dpkg-statoverride
Index(es):
- Date
- Thread