Re: security policy / root passwords

To: Simon McVittie <smcv@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: security policy / root passwords
From: Ian Jackson <ijackson@chiark.greenend.org.uk>
Date: Mon, 10 Jun 2013 15:13:45 +0100
Message-id: <[🔎] 20917.57113.942820.667843@chiark.greenend.org.uk>
In-reply-to: <[🔎] 51B5D6CB.5080303@debian.org>
References: <[🔎] 51B4B11E.8080701@pocock.com.au> <[🔎] 20130609172016.GB26067@nighthawk.chemicalconnection.dyndns.org> <[🔎] 20130610072118.GC26067@nighthawk.chemicalconnection.dyndns.org> <[🔎] 848v2izak6.fsf@sauna.l.org> <[🔎] CALiCqYZeNkTn=gdAjas2LRX=3LLjANejFNqX=Pss98nkMXWKtA@mail.gmail.com> <[🔎] 51B5B9B9.4080701@pocock.com.au> <[🔎] 51B5C2CA.70100@debian.org> <[🔎] 51B5CC89.3060306@pocock.com.au> <[🔎] 51B5D6CB.5080303@debian.org>

Simon McVittie writes ("Re: security policy / root passwords"):
>     * splitting privileged actions into an unprivileged GUI and a
>       privileged daemon, rather than running the GUI with privileges
>       (supported and encouraged by PK, not well-supported by sudo or su)

This gives me another opportunity to plug userv.  userv is a tool for
helping split a local program or service into differently-privileged
parts.  Specifically it's a way of letting one user execute programs
to be run as another user, with appropriate security properties.

Ian.

Reply to:

References:
- security policy / root passwords
  - From: Daniel Pocock <daniel@pocock.com.au>
- Re: security policy / root passwords
  - From: Michael Banck <mbanck@debian.org>
- Re: security policy / root passwords
  - From: Michael Banck <mbanck@debian.org>
- Re: security policy / root passwords
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: security policy / root passwords
  - From: Alexey Serikov <kompadre@gmail.com>
- Re: security policy / root passwords
  - From: Daniel Pocock <daniel@pocock.com.au>
- Re: security policy / root passwords
  - From: Simon McVittie <smcv@debian.org>
- Re: security policy / root passwords
  - From: Daniel Pocock <daniel@pocock.com.au>
- Re: security policy / root passwords
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: Re: Bug severity and private data disclosure
Next by Date: Re: Bug severity and private data disclosure
Previous by thread: Re: security policy / root passwords
Next by thread: Re: security policy / root passwords
Index(es):
- Date
- Thread