The attached patch (to follow) adds a suid USE flag to the iptraf ebuild.
Created attachment 81825 [details, diff] iptraf-suid-use-flag.patch Add a suid USE flag to the iptraf ebuild and document it in use.local.desc.
Building now with the flag you pointed out but for security reasons let the admin set suid-bit. Fixed in cvs, thanks
Leaving out the suid root part makes the change useless. Now, every time I rebuild world, I have to remember to change the permissions on the iptraf binary. Highly counter-intuitive, once I've set a USE flag called suid. Please just trust admins to understand the implications of setting a suid USE flag.
Please reconsider. :-)
I had a talk to some members from security, sorry, but we can't do that. The app doesn't recommend it by itself and so we can't do that. quote from the Makefile "It is recommended that you restrict execution to root only. This option does not install the executable program with the setuid bit on, or with world-execute permissions. If you want it, you'll have to do it yourself with chmod. I have no plans to modify this program to be used by other users." The use flag will stay in to make sure you're able to use it as non-root if you set it and chmod afterwards.
