Bug#50859: xfs Bug #50859: use start-stop-daemon --chuid ?
On Mon, May 12, 2008 at 00:22:29 +0200, Petter Reinholdtsen wrote:
> [Julien Cristau]
> > If you tested that and are confident that it works, sure. I never
> > used xfs myself, so I don't know.
>
> I am quite confident that user nobody will have the required acces to
> the font files. But I just tested modifying /etc/init.d/xfs to
> include --chuid nobody, and it fail to start because it did not get
> write access to /var/run/xfs.pid. The /var/run/ directory is only
> writable by user root. There is also the case with /tmp/.font-unix/
> needing to be writable by the xfs process. So I guess the patch to
> solve this is a but more than just modifying the call to
> start-stop-daemon. :)
>
Add "-user nobody -droppriv" to the xfs command line arguments.
Cheers,
Julien
Reply to: