Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 261373

Summary: portage should be owned by portage:portage
Product: Gentoo Linux Reporter: Caleb Cushing <xenoterracide>
Component: New packagesAssignee: Portage team <dev-portage>
Status: VERIFIED NEEDINFO    
Severity: enhancement    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Caleb Cushing 2009-03-05 22:13:56 UTC
making portage and related files to be owned by portage:portage allows for a further reduction of permissions, if desired.

Reproducible: Always
Comment 1 Caleb Cushing 2009-03-05 22:15:43 UTC
this is a tracking bug, per previous convo with zmedico. mostly so neither of us forget to do it.
Comment 2 Lars Wendler (Polynomial-C) (RETIRED) gentoo-dev 2009-03-05 22:24:36 UTC
(In reply to comment #1)
> this is a tracking bug, per previous convo with zmedico. mostly so neither of
> us forget to do it.

Reassigning then...
Comment 3 Zac Medico gentoo-dev 2009-03-31 16:33:35 UTC
Making things owned by portage means that processes that have dropped privileges have will have the ability to modify files that they couldn't modify previously. It wouldn't necessarily cause problems, but it doesn't seem like an improvement either. So, how about some use cases for how you intend to use the new permissions that you propose?
Comment 4 Alec Warner (RETIRED) archtester gentoo-dev Security 2009-10-19 07:13:43 UTC
Hi Caleb,

Please provide the requested use-cases and re-open the bug so we can revisit this.

-Alec
Comment 5 SpanKY gentoo-dev 2010-01-21 05:51:03 UTC
it seems like it'd make things worse -- it's one thing to give access to /usr/portage/ and another to give access to /usr/bin/emerge.  i cant imagine any reason why you'd need/want that.
Comment 6 Caleb Cushing 2010-01-21 06:21:16 UTC
meh. I gave up on gentoo and all of its progeny a year ago.