Bug#933810: ax25-apps: axlisten should never be setuid

To: Iain Learmonth <irl@debian.org>
Cc: Thomas Osterried <thomas@x-berg.in-berlin.de>, 933810@bugs.debian.org
Subject: Bug#933810: ax25-apps: axlisten should never be setuid
From: Thomas Osterried <thomas@osterried.de>
Date: Tue, 6 Aug 2019 12:22:39 +0200
Message-id: <[🔎] EDC024D4-FE4A-4AD9-94CA-281ECE9F3A7E@osterried.de>
Reply-to: Thomas Osterried <thomas@osterried.de>, 933810@bugs.debian.org
In-reply-to: <[🔎] 559c251e-9af5-ddda-8faa-fa30b768e22f@debian.org>
References: <[🔎] 156486349220.8727.13982182314642710209.reportbug@z.shiftout.net> <[🔎] 20190806093511.GK1024@x-berg.in-berlin.de> <[🔎] 559c251e-9af5-ddda-8faa-fa30b768e22f@debian.org> <[🔎] 156486349220.8727.13982182314642710209.reportbug@z.shiftout.net>


> Am 06.08.2019 um 12:05 schrieb Iain Learmonth <irl@debian.org>:
> 
> Hi,
> 
> On 06/08/2019 10:35, Thomas Osterried wrote:
>> about capabilities: yes, this may be a more secure approach.
>> But I just testet setcap cap_net_raw=ep without success.
> 
> I've not tested this yet, but I suspect cap_net_admin may also be required.

ack. works:
setcap cap_net_raw,cap_net_admin=ep .....

Reply to:

Follow-Ups:
- Re: Bug#933810: ax25-apps: axlisten should never be setuid
  - From: Iain Learmonth <irl@debian.org>

References:
- Bug#933810: ax25-apps: axlisten should never be setuid
  - From: "Iain R. Learmonth" <irl@debian.org>
- Bug#933810: ax25-apps: axlisten should never be setuid
  - From: Thomas Osterried <thomas@x-berg.in-berlin.de>
- Bug#933810: ax25-apps: axlisten should never be setuid
  - From: Iain Learmonth <irl@debian.org>

Prev by Date: Bug#933864: ax25-tools: should recommend net-tools
Next by Date: Re: Bug#933810: ax25-apps: axlisten should never be setuid
Previous by thread: Bug#933810: ax25-apps: axlisten should never be setuid
Next by thread: Re: Bug#933810: ax25-apps: axlisten should never be setuid
Index(es):
- Date
- Thread