* Re: [devel] Watcher report for your packages
@ 2011-01-24 8:06 ` Vladimir V. Kamarzin
2011-01-25 12:46 ` [devel] suid vs capabilities Michael Shigorin
0 siblings, 1 reply; 2+ messages in thread
From: Vladimir V. Kamarzin @ 2011-01-24 8:06 UTC (permalink / raw)
To: ALT Linux Team development discussions
Cc: ALT Linux Sisyphus discussions, shigorin
>>>>> On 22 Jan 2011 at 23:22 "VF" == Victor Forsiuk writes:
>> > mtr [ftp://ftp.bitwizard.nl/mtr/]: версия пакета = 0.72, версия апстрима
>> = 0.80 [ACL: mike ldv @qa]
>>
>> Застрял на mtr-0.72-alt-droppriv.patch (ldv@).
>>
VF> У меня, кстати, есть предложение перевести репозитарий на file capabilities.
VF> mtr пустим как "пилотный проект". Зачем вообще давать suid программе,
VF> которой нужен только cap_net_raw?
http://www.opennet.ru/opennews/art.shtml?num=29219
--
vvk
^ permalink raw reply [flat|nested] 2+ messages in thread
* [devel] suid vs capabilities
2011-01-24 8:06 ` [devel] Watcher report for your packages Vladimir V. Kamarzin
@ 2011-01-25 12:46 ` Michael Shigorin
0 siblings, 0 replies; 2+ messages in thread
From: Michael Shigorin @ 2011-01-25 12:46 UTC (permalink / raw)
To: ALT Linux Team development discussions
On Mon, Jan 24, 2011 at 01:06:46PM +0500, Vladimir V. Kamarzin wrote:
> > У меня, кстати, есть предложение перевести репозитарий на
> > file capabilities. mtr пустим как "пилотный проект". Зачем
> > вообще давать suid программе, которой нужен только
> > cap_net_raw?
> http://www.opennet.ru/opennews/art.shtml?num=29219
А также
http://www.opennet.ru/openforum/vsluhforumID3/73378.html
http://www.opennet.ru/openforum/vsluhforumID3/71880.html#13
http://www.openwall.com/lists/oss-security/2010/11/08/3
http://userweb.kernel.org/~morgan/sendmail-capabilities-war-story.html
--
---- WBR, Michael Shigorin <mike@altlinux.ru>
------ Linux.Kiev http://www.linux.kiev.ua/
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2011-01-25 12:46 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-01-24 8:06 ` [devel] Watcher report for your packages Vladimir V. Kamarzin
2011-01-25 12:46 ` [devel] suid vs capabilities Michael Shigorin
ALT Linux Team development discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/devel/0 devel/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 devel devel/ http://lore.altlinux.org/devel \
devel@altlinux.org devel@altlinux.ru devel@lists.altlinux.org devel@lists.altlinux.ru devel@linux.iplabs.ru mandrake-russian@linuxteam.iplabs.ru sisyphus@linuxteam.iplabs.ru
public-inbox-index devel
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.devel
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git