On 28/08/13 01:13, Jerry Stuckle wrote:Reading through the bug report, it looks like upstream didn't acceptI agree its good to keep things as close as possible to upstream, but
it. Debian stays as close as possible to upstream, for good reason.
unless upstream can present some compelling argument for why they've
chosen to run it as root, surely this would be a good case to deviate?
Running a network daemon as root is poor security practice and just
plain poor design.