From owner-freebsd-bugs Thu May 4 11: 0:52 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from anchor-post-31.mail.demon.net (anchor-post-31.mail.demon.net [194.217.242.89]) by hub.freebsd.org (Postfix) with ESMTP id E59A237C24E for ; Thu, 4 May 2000 11:00:40 -0700 (PDT) (envelope-from n_hibma@calcaphon.com) Received: from calcaphon.demon.co.uk ([193.237.19.5] helo=bluebottle.qubesoft.com) by anchor-post-31.mail.demon.net with esmtp (Exim 2.12 #1) id 12nPvQ-0002cU-0V; Thu, 4 May 2000 19:00:36 +0100 Received: from henny.qubesoft.com (henny.qubesoft.com [192.168.1.5]) by bluebottle.qubesoft.com (8.9.3/8.9.1) with ESMTP id SAA67164; Thu, 4 May 2000 18:57:43 +0100 (BST) (envelope-from n_hibma@calcaphon.com) Date: Thu, 4 May 2000 18:56:45 +0100 (BST) From: Nick Hibma X-Sender: n_hibma@localhost Reply-To: Nick Hibma To: Neil Blakey-Milner Cc: freebsd-bugs@freebsd.org Subject: Re: bin/18373: pkg_delete shouldn't insist on root In-Reply-To: <20000504170054.A21029@mithrandr.moria.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org You can't update /var/db/pkgs in that case. I think. In any case, part of the update needs to be done as root, so pkg_delete has to switch user every so often to do the right thing. If you feel strongly about this I suggest you argue your case to Warner Losh our security officer. Nick On Thu, 4 May 2000, Neil Blakey-Milner wrote: > On Thu 2000-05-04 (07:50), Nick Hibma wrote: > > The following reply was made to PR bin/18373; it has been noted by GNATS. > > > > From: Nick Hibma > > To: Ben Smithurst > > Cc: FreeBSD-gnats-submit@freebsd.org > > Subject: Re: bin/18373: pkg_delete shouldn't insist on root > > Date: Thu, 4 May 2000 15:46:15 +0100 (BST) > > > > > It is rather inconvenient that pkg_delete(1) requires the calling user > > > to be root, as this makes testing a port you have created hard (it > > > seems you have to be root to allow "make deinstall" do anything). This > > > restriction seems unnecessary, and removing it certainly can't be a > > > security risk. > > > > Example: libmm (used by a webserver) could then be deleted and the > > webserver being brought down. > > Err, without having root? I'd love to see a non-root process delete > things it doesn't have permissions for. This is for packages installed > by yourself, owned by you, in your own package directory. > > > It _is_ a security risk. > > I don't think so, unless I missed something huge. > > Neil > -- > Neil Blakey-Milner > Hacker In Chief, Sunesi Clinical Systems > nbm@mithrandr.moria.org > -- n_hibma@webweaving.org n_hibma@freebsd.org USB project http://www.etla.net/~n_hibma/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message