Re: Installed procmail 3.15.2-1 (i386 source)

To: Herbert Xu <herbert@gondor.apana.org.au>
Cc: <debian-devel@lists.debian.org>
Subject: Re: Installed procmail 3.15.2-1 (i386 source)
From: Santiago Vila <sanvila@unex.es>
Date: Fri, 31 Aug 2001 10:20:49 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.33.0108311015260.2657-100000@home.unex.es>
In-reply-to: <[🔎] E15caS6-0005i6-00@gondolin.me.apana.org.au>

On Fri, 31 Aug 2001, Herbert Xu wrote:

> Santiago Vila <sanvila@debian.org> wrote:
>
> > procmail (3.15.2-1) stable; urgency=high
> > .
> >   * New upstream release, with improved security and robustness involving
> >     signal handlers. Author recommends upgrading to this version on
> >     any system where it is installed setuid or setgid.
>
> There goes the argument that procmail is secure enough to be setuid.  So
> how about removing the setuid bit by default?

I don't understand in which way this changelog entry supports your
idea of dropping the setuid bit. Do you drop the setuid bit every time
you fix a bug in a setuid program? Obviously not.

The recommended default has not changed. Use dpkg-statoverride if you
dislike it.

Reply to:

References:
- Re: Installed procmail 3.15.2-1 (i386 source)
  - From: Herbert Xu <herbert@gondor.apana.org.au>

Prev by Date: Re: [woodm@equire.com: XFree86 common]
Next by Date: Re: new port: and the winner is....
Previous by thread: Re: Installed procmail 3.15.2-1 (i386 source)
Next by thread: Bug#110721: ITP: css-elisp -- Emacs Mode for editing Cascading Style Sheets
Index(es):
- Date
- Thread