[bug#61462] Add support for file capabilities(7)

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#61462] Add support for file capabilities(7)

From:	Ludovic Courtès
Subject:	[bug#61462] Add support for file capabilities(7)
Date:	Thu, 20 Apr 2023 12:33:27 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux)

Hi,

Vagrant Cascadian <vagrant@debian.org> skribis:

> At least the case I am most familiar with, lcsync, it really should not
> run as setuid-root, as that effectively allows anyone to modify or copy
> any file as root. Although, likely Hurd limits the impacts of setuid
> root in ways I do not understand?

There are many more things that can be done on the Hurd without being
root.  So I don’t know, maybe we can ignore the issue for now and simply
make sure that the defaults work for the Hurd.

> Even then, I still think if you ask for something in your guix system
> configuration, and it cannot deliver what you asked for, it should not
> give you something else as an approximation of what you wanted.

Yeah, you’re right that an approximation could be risky…

Thanks,
Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#61462] Add support for file capabilities(7), Ludovic Courtès, 2023/04/18
- [bug#61462] Add support for file capabilities(7), Vagrant Cascadian, 2023/04/18
  - [bug#61462] Add support for file capabilities(7), Ludovic Courtès <=

Prev by Date: [bug#62292] [PATCH] gnu: Add kitsas
Next by Date: [bug#62965] [PATCH 1/2] gnu: python-ujson: Update to 5.7.0.
Previous by thread: [bug#61462] Add support for file capabilities(7)
Next by thread: [bug#62921] [PATCH] gnu: emacs-gerbil-mode: Add emacs-gerbil-mode.
Index(es):
- Date
- Thread