Hi, (cc'ing mentors since you already filed an RFS [1]) > It builds a single, eponymous, binary package. > > I think it is a useful, though extremely simple, utility: > system administrators may use it to starts processes as a non-privileged > user and ensure that they cannot attempt to exploit local setuid binaries. I don't mean to discourage you, but doesn't setpriv --no-new-privs already do that? It's available in Stretch and sid, in the package setpriv, built from src:util-linux. Regards, Christian [1] Also, weirdly, I didn't see your ITP on debian-devel for some reason.
Attachment:
signature.asc
Description: OpenPGP digital signature