Re: setuid/setgid binaries contained in the Debian repository.

To: debian-devel@lists.debian.org
Subject: Re: setuid/setgid binaries contained in the Debian repository.
From: Matt Zimmerman <mdz@debian.org>
Date: Fri, 1 Aug 2003 14:15:26 -0400
Message-id: <[🔎] 20030801181526.GN15502@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20030801174648.GA17424@dragon.kitenet.net>
References: <[🔎] 20030801152657.GM17061@ns.snowman.net> <[🔎] 20030801160453.GH15502@alcor.net> <[🔎] 20030801174648.GA17424@dragon.kitenet.net>

On Fri, Aug 01, 2003 at 01:46:48PM -0400, Joey Hess wrote:

> Here's a draft policy proposal. If this looks ok I'll submit it to the
> policy group.

Thanks for doing this.  It looks fine, with the exception of a small typo:

> +          Since setuid and setgid programs are often a security rick,
                                                                   ^ risk

If we could come up with a standard way of setting these permissions, to
avoid the kind of messing around in the postinst that we do now, it would be
trivial to add lintian/linda warnings for this, to encourage maintainers to
discuss the situation before uploading.  doogie, asuffield and I discussed
this on IRC recently.

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Josip Rodin <joy@srce.hr>

References:
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Stephen Frost <sfrost@snowman.net>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Matt Zimmerman <mdz@debian.org>
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: [PROPOSAL] Debian Release Plan
Next by Date: Re: setuid/setgid binaries contained in the Debian repository.
Previous by thread: Re: setuid/setgid binaries contained in the Debian repository.
Next by thread: Re: setuid/setgid binaries contained in the Debian repository.
Index(es):
- Date
- Thread