SUID binaries in the repo

Michael Stahnke mastahnke at gmail.com
Fri Oct 26 16:43:18 UTC 2007


On 10/26/07, Jesse Keating <jkeating at redhat.com> wrote:
> On Fri, 26 Oct 2007 17:46:55 +0200
> Patrice Dumas <pertusus at free.fr> wrote:
>
> > rpmlint already points out suid files. I don't think that a specific
> > guideline is needed, a word of caution would be nice. We should expect
> > maintainers to know what they are doing when packaging suid stuff.
> > I personally maintain pmount which is, I hope, rightfully suid.
>
> If we want somebody to explicitly examine all suid instances they yes,
> we do need a guideline.
>
> --
> Jesse Keating
> Fedora -- All my bits are free, are yours?
>
> --
> fedora-devel-list mailing list
> fedora-devel-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-devel-list
>
>
Also keep in mind that not everyone runs rpmlint after each
commit/change.  Some only use it when submitting/reviewing new
packages.

stahnma




More information about the fedora-devel-list mailing list