Re: The right way for suid-bit-programs?!

To: Matthew Wilcox <willy@odie.barnet.ac.uk>
Cc: grisu@debian.org (Michael Bramer), debian-mentors@lists.debian.org
Subject: Re: The right way for suid-bit-programs?!
From: Manoj Srivastava <srivasta@datasync.com>
Date: 20 Aug 1998 12:07:26 -0500
Message-id: <[🔎] 87soirtwdt.fsf@tiamat.datasync.com>
In-reply-to: Matthew Wilcox's message of "Thu, 20 Aug 1998 15:41:51 +0100 (BST)"
References: <[🔎] 199808201441.PAA03428@odie.barnet.ac.uk>

Hi,
>>"Matthew" == Matthew Wilcox <willy@odie.barnet.ac.uk> writes:

 Matthew> Michael Bramer
 >> 
 >> But in this package is a binary, that need a 'chmod u+s' to root because
 >> it play with ioctl system calls. (blink LEDs on the keyboard)
 >> 
 >> Have we a policy for that?

	Well, look at the source and make sure that it does not have
 trojan horses ;-), and mention the suid  behaviour in man pages and
 in /usr/doc/package/. There is no policy on this as such; the
 developers are expected to excercise caution.

 Matthew> Use suidmanager.

	That is not policy.

__> zgrep -i suidmanager /usr/doc/debian-policy/*.text.gz
__> zgrep -i suid /usr/doc/debian-policy/*.text.gz
__> dpkg -s suidmanager
Package: suidmanager
Status: purge ok not-installed
Priority: optional
Section: admin


	manoj
-- 
 You can write a small letter to Grandma in the filename. Forbes
 Burkowski, CS, University of Washington
Manoj Srivastava  <srivasta@acm.org> <http://www.datasync.com/%7Esrivasta/>
Key C7261095 fingerprint = CB D9 F4 12 68 07 E4 05  CC 2D 27 12 1D F5 E8 6E

Reply to:

References:
- Re: The right way for suid-bit-programs?!
  - From: Matthew Wilcox <willy@odie.barnet.ac.uk>

Prev by Date: Re: The right way for suid-bit-programs?!
Next by Date: copy root
Previous by thread: Re: The right way for suid-bit-programs?!
Next by thread: copy root
Index(es):
- Date
- Thread