Mail archive
alpine-devel

Re: [alpine-devel] 3.3 proposal: reduce number of SUID binaries as much as possible

From: Natanael Copa <ncopa_at_alpinelinux.org>
Date: Thu, 28 May 2015 08:03:13 +0200

> > On Tue, May 26, 2015 at 04:32:01AM -0500, William Pitcock wrote:
> >> I would like to see a general reduction of SUID binaries where
> >> possible. For example, a lot of APKBUILDs have options=suid when
>> there's probably no real reason for it.

On Tue, 26 May 2015 23:19:05 +0300
eleksir <eleksir_at_exs-elm.ru> wrote:

> Sure. Let's remove suid from sudo and su. It will be clever joke when
> you try to switch to root and fail. Go ahead you security freak, remove
> all suid bits and patch kernel/libc to remove all roots of this suid evil.

He said "where possible" and "when there's ... no real reason for it".

> C'mon people, stop already this talks about "cleaning" system. Submit
> patches, make upstream (not distro maintainers) accept them.

We want fix it upstream yes. I still think its a good idea to look over
the places and submit bugs upstream.


-nc


---
Unsubscribe:  alpine-devel+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-devel+help_at_lists.alpinelinux.org
---
Received on Thu May 28 2015 - 08:03:13 GMT