From owner-freebsd-bugs Thu May 4 7:50: 7 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 9131E37C052 for ; Thu, 4 May 2000 07:50:03 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.9.3/8.9.2) id HAA76440; Thu, 4 May 2000 07:50:03 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Date: Thu, 4 May 2000 07:50:03 -0700 (PDT) Message-Id: <200005041450.HAA76440@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Nick Hibma Subject: Re: bin/18373: pkg_delete shouldn't insist on root Reply-To: Nick Hibma Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR bin/18373; it has been noted by GNATS. From: Nick Hibma To: Ben Smithurst Cc: FreeBSD-gnats-submit@freebsd.org Subject: Re: bin/18373: pkg_delete shouldn't insist on root Date: Thu, 4 May 2000 15:46:15 +0100 (BST) > It is rather inconvenient that pkg_delete(1) requires the calling user > to be root, as this makes testing a port you have created hard (it > seems you have to be root to allow "make deinstall" do anything). This > restriction seems unnecessary, and removing it certainly can't be a > security risk. Example: libmm (used by a webserver) could then be deleted and the webserver being brought down. It _is_ a security risk. Check the chmod man page for information on setting suid and setguid bits to enable you to start pkg_delete as a normal user. Or write a suid wrapper only executable by you. Nick -- n_hibma@webweaving.org n_hibma@freebsd.org USB project http://www.etla.net/~n_hibma/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message