Re: Introducing the hardening-wrapper package (was: Exim4 problems)
On Mon, 2011-05-30 at 23:36 +0200, Samuel Thibault wrote:
> Svante Signell, le Mon 30 May 2011 23:33:28 +0200, a écrit :
> > On Mon, 2011-05-30 at 23:22 +0200, Samuel Thibault wrote:
> > > Svante Signell, le Mon 30 May 2011 23:13:56 +0200, a écrit :
> > > > 2011-05-29 18:18:49 failed to open configuration file
> > > > /build/buildd-exim4_4.76-2-hurd-i386-IUsCPu/exim4-4.76/test/eximtest/exim4.conf: Permission denied (euid=60000 egid=107)
> > ...
> > > sbuild is already supposed to set uid and gid properly (even before
> > > the log starts, that is), and it's indeed correct: 60000.107 is
> > > buildd.sbuild
> > Yes, but for the test program to work the buildd user needs to be a
> > member of the Debian-exim group too! At least I think so.
> buildd is clearly not in that group indeed. But then it wouldn't be able
> to build a file in that group either...
You are right. And the configure file exim4.conf is created with the
same uid.gid as the user doing the build. No idea why the file is not
accessible from buildd.sbuild
One difference I can see is that the buildd has the following packages
Package versions: exim4-base_4.72-3+b1 exim4-config_4.72-3
while I have exim4-*_4.76-1+hurd.1.