[mythtv] unprivileged user?
Alan Snyder
ax763 at yahoo.com
Tue Aug 12 10:42:02 EDT 2003
Doesn't the ability of the application to switch users
depend upon setuid root
and isn't every additional setuid root program a
security risk?
Perhaps this kind of thing is better handled during
install. If the mythtv user
exists, set ownership on relevant directories and on
mythbackend and
mythfrontend, and chmod u+s on mythbackend and
mythfrontend. An install script
could do this, or it could just be recommended in the
HOWTO.
> -----Original Message-----
> From: mythtv-dev-bounces at mythtv.org
[mailto:mythtv-dev-bounces at mythtv.org] On
> Behalf Of Chris Petersen
> Sent: Tuesday, August 12, 2003 12:17 PM
> To: Development of mythtv
> Subject: Re: [mythtv] unprivileged user?
>
> > What mythtv user? Most systems with mythtv
installed probably don't have
>
> > such a user.
>
>
>
> Thus, you create it.
>
>
>
> ok, basically, you can specify the userid during
compile (defaults to
>
> "mythtv"), and override this on startup with a
--username type flag. If
>
> such a user does not exist, myth could either create
the user for itself
>
> (not such a good idea - though it might be fine as
an optional command
>
> line argument), or exit with an error message
explaining that an
>
> unprivileged user named X needs to exist. User
creation can happen
>
> automatically for those of us who use packages.
>
>
>
> Anyway, it's not really a big deal - just thought
that it'd be a nice
>
> security enhancement.
>
>
>
> -Chris
>
>
>
> _______________________________________________
>
> mythtv-dev mailing list
>
> mythtv-dev at mythtv.org
>
>
http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-dev
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
More information about the mythtv-dev
mailing list