Re: request for guidance

To: "Sean 'Shaleh' Perry" <shaleh@valinux.com>
Cc: debian-policy@lists.debian.org
Subject: Re: request for guidance
From: Brian Russo <brusso@phys.hawaii.edu>
Date: Fri, 23 Feb 2001 07:59:59 -1000
Message-id: <[🔎] 20010223075959.K13710@uhhepr.phys.hawaii.edu>
In-reply-to: <[🔎] XFMail.20010223085021.shaleh@valinux.com>; from shaleh@valinux.com on Fri, Feb 23, 2001 at 08:50:21AM -0800
References: <[🔎] XFMail.20010223085021.shaleh@valinux.com>

On Fri, Feb 23, 2001 at 08:50:21AM -0800, Sean 'Shaleh' Perry wrote:
> Since suidregister was removed, packages are now allowed to ship items with the
> set[gs]id flag on.  This is currently a lintian warning.  I have considered
> removing it (and bugs ask me to do so) however I am not sure it is the right
> thing to do.  The warning lets the developer know that they are shipping
> possibly hazardous/security threatening/will cause bugs later items.  So, do I
> leave it and let people use overrides?  Or do i remove them and hope the rest
> of debian does not miss an accidental permission setting from upstream?


I think overrides are best.
It makes sure people know exactly what is suid/sgid in the file.
Also makes it easy to see which files are suid/sgid in that package.


-- 
Brian Russo      <brusso@phys.hawaii.edu>
Debian/GNU Linux <wolfie@debian.org> http://www.debian.org
LPSG "member"    <wolfie@lpsg.org>   http://www.lpsg.org
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Reply to:

References:
- request for guidance
  - From: "Sean 'Shaleh' Perry" <shaleh@valinux.com>

Prev by Date: request for guidance
Next by Date: Re: request for guidance
Previous by thread: request for guidance
Next by thread: Re: request for guidance
Index(es):
- Date
- Thread