[Adduser-devel] Bug#290623: adduser should never use "nogroup" as a user's group
Joerg Hoh
joerg at joerghoh.de
Sun Sep 2 15:27:29 UTC 2007
tags 290623 +wontfix
thanks
On Sun, Jun 24, 2007 at 11:56:31AM +0200, Joerg Hoh wrote:
>
> In my opinion any package who wants to use an unprivileged user ("nouser") or
> group ("nogroup") should create a separate user for that usage (see the
> www-data user for httpd). In any other way there maybe conflicts/security
> implications when 2 processes are there with with privileges dropped and now
> using "nouser:nogroup".
I'll tag it as wontfix.
Jörg
--
What did you do to the cat? It looks half-dead. -Schroedinger's wife
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/adduser-devel/attachments/20070902/24d62c2d/attachment.pgp
More information about the Adduser-devel
mailing list