719226 – net-misc/stunnel-5.56-r1 patch to implement setuid + setgid in init file

Bug 719226 - net-misc/stunnel-5.56-r1 patch to implement setuid + setgid in init file

Summary: net-misc/stunnel-5.56-r1 patch to implement setuid + setgid in init file

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal enhancement (vote)
Assignee:	Anthony Basile

URL:
Whiteboard:
Keywords:	PATCH

Depends on:
Blocks:

Reported:	2020-04-24 12:19 UTC by Janpieter Sollie
Modified:	2020-05-03 12:56 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
change init to accept setgid and setuid (file_719226.txt,1.16 KB, text/plain) 2020-04-24 12:19 UTC, Janpieter Sollie	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Janpieter Sollie 2020-04-24 12:19:44 UTC

Created attachment 634376 [details]
change init to accept setgid and setuid

(view patch file, created for 5.56-r1)
I don't know whether it is a good thing, but I guess most stunnel users would appreciate it

Comment 1 Anthony Basile gentoo-dev

2020-05-03 11:45:22 UTC

I don't want to support alternative SETUIDs and SETGIDs.  I need to have a good case made as to why we should do so.

Comment 2 Janpieter Sollie 2020-05-03 12:56:08 UTC

maybe if you are running eg bind with DNS over TLS as "named", it would be handy to run the tunnel as "named" so everything concerning bind runs as the same user? I know, it does not really matter because they are distinct processes, but ethically you can say it's much cleaner.