Re: default security

To: debian-security@lists.debian.org, 50013@bugs.debian.org
Subject: Re: default security
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Thu, 7 Mar 2002 10:54:48 +0100
Message-id: <[🔎] 20020307095448.GA18406@dat.etsit.upm.es>
In-reply-to: <20020115125132.GC772@fishbowl.madduck.net>
References: <02010810371000.00456@NodeFilter> <10934.1010554342@kanga.nu> <20020114093138.GC17870@dat.etsit.upm.es> <02011407525900.01027@NodeFilter> <20020114231245.J1098@morgul.net> <3C43F47C.3060109@nu.no> <20020115121612.GH3595@dat.etsit.upm.es> <20020115125132.GC772@fishbowl.madduck.net>

On Tue, Jan 15, 2002 at 01:51:32PM +0100, martin f krafft wrote:
> 
> > 	Debian could provide, with only some effort from package
> > maintainers versions of daemons chrooted to given environments. This
> > however, might break Policy (IMHO).
> 
> how would it break policy?

(sorry, catching up with posts)

	Policy would be broken because a chroot installation would need
all the libraries, configuration files, etc... that the service needed
to be placed in a given fixed location 
(for example /usr/lib/named/etc, /usr/lib/named/var/{log,run})
This defeats the FHS and also one of Debian's primary assumptions
(all configuration files in /etc for example) on which the policy is
based.
	This also makes it more difficult for package maintainance,
how do I propagate changes from dynamic libraries to chrooted services?
Of course, if the service is able to chroot itself (example is bind's
-t flag or proftp's anonymous chrooted environment) this is less of an
issue since you can run it properly and
just need config, log, data and pid files in the chrooted environment.

	Regards



	Javi

Reply to:

Follow-Ups:
- Re: default security
  - From: Xeno Campanoli <xeno@eskimo.com>
- Re: default security
  - From: martin f krafft <madduck@madduck.net>

Prev by Date: ipop3d delays
Next by Date: openssh
Previous by thread: Re: ipop3d delays
Next by thread: Re: default security
Index(es):
- Date
- Thread