Re: setuid/setgid binaries contained in the Debian repository.

To: MichałPolitowski <mpol@charybda.icm.edu.pl>
Cc: <debian-devel@lists.debian.org>
Subject: Re: setuid/setgid binaries contained in the Debian repository.
From: Adam Heath <doogie@debian.org>
Date: Mon, 4 Aug 2003 10:28:17 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.44.0308041027200.25610-100000@gradall.private.brainfood.com>
In-reply-to: <[🔎] 20030801112028.GA5765@Amber.lab.icm.edu.pl>

On Fri, 1 Aug 2003, [iso-8859-2] Micha³Politowski wrote:

> On Fri,  1 Aug 2003 19:19:10 +1000, Matthew Palmer wrote:
> [...]
> > From my investigations, I thought that the intended use of dpkg-statoverride
> > was by the local administrator, modifying the default suid/sgid and
> > ownership of the file as set in the package tarball.
>
> This is also my understanding. Still, some packages do use it for better or
> worse reasons.
> One example I've just found in uml-utilities.postinst:
>
>   if ! getent group uml-net >/dev/null; then
>       addgroup --quiet --system uml-net
>   fi
>
>   if ! dpkg-statoverride --list /usr/lib/uml/uml_net >/dev/null; then
>       dpkg-statoverride --update --add root uml-net 04750 \
>           /usr/lib/uml/uml_net
>   fi

There are plans to remove this nescessity, by having the preinst add the
user/group, and having the deb contain the dynamic permissions itself.

This would mean all packages that current Depend on adduser would have to
Pre-Depend on it.  It also requires some changes to dpkg-deb.

Reply to:

References:
- Re: setuid/setgid binaries contained in the Debian repository.
  - From: Michał Politowski <mpol@charybda.icm.edu.pl>

Prev by Date: Fw: Re: Ruby 1.8 transition plan; debian-ruby
Next by Date: [OT:HUMOR] Re: setuid/setgid binaries contained in the Debian repository.
Previous by thread: Re: setuid/setgid binaries contained in the Debian repository.
Next by thread: Re: setuid/setgid binaries contained in the Debian repository.
Index(es):
- Date
- Thread