SUID binaries in the repo
Jesse Keating
jkeating at redhat.com
Fri Oct 26 13:53:24 UTC 2007
On Fri, 26 Oct 2007 07:47:31 -0400
Josh Bressers <bressers at redhat.com> wrote:
> Within Red Hat I care for a suid whitelist. If it's not on the list,
> I have to be convinced that it should be. It works rather well
> honestly. It would probably make sense to give this task to the
> Fedora Security Response Team as it will be them cleaning up the mess
> after a "suid gone wild" event.
Can you help us draft up a new package review rule that will bring suid
things to your attention? I think rpmlint may point out suid files, or
could be made to easily. What's missing is a point of contact or a
bugzilla keyword or blocker list we set or something.
--
Jesse Keating
Fedora -- All my bits are free, are yours?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20071026/c23f1391/attachment.sig>
More information about the fedora-devel-list
mailing list