[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#238460: general: apt-get source: certain files in some packages are owned by a different UID

On Wed, Mar 17, 2004 at 05:35:27PM +0000, Henning Makholm wrote:
> A more portable "fix" would require dpkg-source to check whether it is
> root, and, if so, fork "su nobody tar -xkf -" instead of just "tar
> -xkf -".

No files should ever be owned by nobody, so this would be bad.

> Do we close this bug report or reassign it (as wishlist, probably) to
> dpkg?

It seems like a reasonable wishlist for dpkg. It could be implemented
safely by, for example, making the tmp-nest directory mode 700 and
chowning (if possible) all the extracted files to the current uid,
before moving the extracted files to a world-searchable location.

Cheers,

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]
Reply to: