Re: (forw) Bug#298060: Please don't install login as setuid root

To: Christian Perrier <bubulle@debian.org>, team@security.debian.org, debian-release@lists.debian.org, 298060@bugs.debian.org, 298060-submitter@bugs.debian.org
Subject: Re: (forw) Bug#298060: Please don't install login as setuid root
From: Joey Hess <joeyh@debian.org>
Date: Sun, 6 Mar 2005 16:34:32 -0800
Message-id: <[🔎] 20050307003432.GA24455@kitenet.net>
Mail-followup-to: Christian Perrier <bubulle@debian.org>, team@security.debian.org, debian-release@lists.debian.org, 298060@bugs.debian.org, 298060-submitter@bugs.debian.org
In-reply-to: <[🔎] 20050306225332.GB5566@mauritius.dodds.net>
References: <[🔎] 20050305143458.GL7778@mykerinos.kheops.frmug.org> <[🔎] 20050306225332.GB5566@mauritius.dodds.net>

Has anyone looked at shadow's existing changelog?

  * /bin/login is suid root for several good reasons. For one, it allows
    daemons that use it to run as non-root. This is a good thing since it
    means only one program is running as root, and not several. closes: #17911

 -- Ben Collins <bcollins@debian.org>  Sun, 31 Dec 2000 14:33:47 -0500

-- 
see shy jo (hurrah for changelog abuse!)

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: (forw) Bug#298060: Please don't install login as setuid root
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Bug#298060: (forw) Bug#298060: Please don't install login as setuid root
  - From: Christian Perrier <bubulle@debian.org>

References:
- (forw) Bug#298060: Please don't install login as setuid root
  - From: Christian Perrier <bubulle@debian.org>
- Re: (forw) Bug#298060: Please don't install login as setuid root
  - From: Steve Langasek <vorlon@debian.org>

Prev by Date: New version of nvi for sarge
Next by Date: #231538 and module-init-tools
Previous by thread: Re: (forw) Bug#298060: Please don't install login as setuid root
Next by thread: Re: (forw) Bug#298060: Please don't install login as setuid root
Index(es):
- Date
- Thread