DB Hub has the feature to suid, if feature is enabled. A corresponding useflag might be usefull. Reproducible: Always
For what exactly would this be useful? An additional potential security hole to install the binary suid?
Okay, this was a little misleading. The feature enables basicly to run dbhub as root (as in: root user starts it), keeps the bind capability for priviledged ports, then suid to the given user and thus dropping the root priviliedges. If you know of an alternative, to accomplish the same thing, whithout enabling the user switching (suid to unpriviledged) I'd be glad to know.
Created attachment 133284 [details, diff] Ebuild for current version of dbhub including switch user Since this is still open and there's no ebuild for the new version yet, I supply an updated ebuild with a 'switchuser' useflag.
Created attachment 133285 [details, diff] Replacement for the dbhub-gentoo.patch file Made new patch to go with new ebuild.
Created attachment 137076 [details] Ebuild with siwtch_user support Since noone ever took care of adding support for this, here is a corrected ebuild for dbhub-0.450. Make sure, to grab the lstest 0.450 package or otherwise dbhub will not compile with siwtch_user enabled.
Since the switch_user (resp. suid) use flag was not incorporated into the ebuild after the update to the new version, I reopened this. Maybe someone is grateful enough to commit this into portage (maybe as 0.450-r1?).
Fails to compile for me with that enabled
Did you get the correct updated package? The one in the distfiles mirrors is outdated and broken - although they carry the same version, the packages differ. (In reply to comment #7) > Fails to compile for me with that enabled >
Created attachment 143063 [details] ebuild for new version 0.451 Version bump to new dbhub version. Support for switch_user (useflag). New useflag debug. Maybe this time somebody is capable of adding this to portage and add stuff to the ebuild, that might be mising (i.e. disable stripping when debug is in USE flags).
In CVS
