Re: Writing to /etc/ from a "privileged" UI

To: dapal@debian.org
Cc: debian-devel@lists.debian.org, Didier Raboud <odyx@debian.org>, 612918@bugs.debian.org
Subject: Re: Writing to /etc/ from a "privileged" UI
From: Goswin von Brederlow <goswin-v-b@web.de>
Date: Thu, 12 May 2011 18:25:17 +0200
Message-id: <[🔎] 87iptfga36.fsf@frosties.localnet>
In-reply-to: <[🔎] 20110509093907.01a24e16@local> (David Paleino's message of "Mon, 9 May 2011 09:39:07 +0200")
References: <4DC771AC.703010@scrawlstudios.com> <1304918280.f23BC38D1406.20467@mail.ua> <[🔎] 20110509093907.01a24e16@local>

David Paleino <dapal@debian.org> writes:

> Hello everybody,
> I'm writing this mail to gather comments about a serious bug I received some
> time ago, for which I haven't yet had time to make a proper fix. The bug is
> #612918, against wicd, "Uses /etc/wicd/wireless-settings.conf as state file".
>
> My opinion is that wireless networks with some kind of configuration provided
> (say, a key, or a DNS server, or some static IP, [..]), should be saved there
> (so the bug really is: «don't uselessly save all the networks you encounter»
> -- and I already have a fix for that).
>
> The reporter's opinion is that no GUI should ever write to /etc/.
>
> However, WICD clients are run from privileged users, i.e. those in the `netdev'
> group, and are added there by root. So I think that's perfectly fine.

With / being mounted read-only, and yes there are more and more people
who do have that again, /etc is not writable at runtime for
anything. So your GUI will simply fail to work.

> I took a look at how NetworkManager handles that: it stores configuration using
> gconf, so it's not really comparable. I'd like to stick with files under /etc/,
> possibly.
>
> What's your opinion on this?
> I haven't searched thoroughly through the archive, but I guess there are other
> UIs run by privileged non-root users that write to /etc/?
>
> Didier, I hope I correctly summarised the bug you reported. If not, please
> reply :)
>
> Thanks for your suggestions,
> David

The only way you can argue is that your GUI is a nice frontend for
editing the static config in /etc/wicd/wireless-settings.conf. As such
the admin needs to remount / read-write before running it just like he
would before running 'sensible-editor /etc/wicd/wireless-settings.conf'.

In that case you should detect when /etc is read-only and have good
error messages. Maybe even have some way to automatically or with one
click mount / read-write for the duration of the write.

Note: For comparison in apt one can configure hooks to mount /
read-write before invoking dpkg and read-only after. So "apt-get
upgrade" works without having to remount / read-write first.

MfG
        Goswin

Reply to:

References:
- Writing to /etc/ from a "privileged" UI
  - From: David Paleino <dapal@debian.org>

Prev by Date: Bug#626514: ITP: fst -- VST plugins on GNU/Linux
Next by Date: Re: Bug#616317: base: commit= ext3 mount option in fstab has no effect.
Previous by thread: Re: Writing to /etc/ from a "privileged" UI
Next by thread: Bug#626159: ITP: scilab-jims -- Binding the worlds of Scilab and Java
Index(es):
- Date
- Thread