Re: Updated logging and security patches for hal 0.2.97
Martin Pitt <martin <at> piware.de>
2004-09-03 20:01:10 GMT
On 2004-09-03 20:41 +0200, David Zeuthen wrote:
> I do think this is important to work on, however, as it is right now,
> the callouts need to run as root and thus, effectively, hald needs to
> run as root. I've discussed earlier having a helper process to do the
> callouts; there might be other ways though.
Our Company's distribution does use another way; we do not mangle
fstab, but use a suid root wrapper around mount that allows users to
mount removeable devices if a certain policy is fulfilled. This way,
the amount of code that runs as root is kept to a minimum, fstab is
not touched any more and hald can run as normal user.
> > Most of the
> > stuff fixes bugs and is completely independent from privilege dropping
> > anyway and none of the patches are Debian specific.
> How does this work; is the Debian package using --drop-privileges as
By now these changes are not contained in Debian, they are just
proposed as a patch (I'm not the maintainer of hal in Debian).
However, our Company's distribution uses this modified package for
quite a while now.
The patch proposed to Debian asks a Debconf question (default no)
whether hald should run as root. Our company then just needs to change
the default to yes and don't show the question.