| Summary: |
dev-libs/cyrus-sasl should set saslauthd to run under its own user |
| Product: |
Gentoo Linux
|
Reporter: |
montjoie <corentin.labbe> |
| Component: |
Current packages | Assignee: |
No maintainer - Look at https://wiki.gentoo.org/wiki/Project:Proxy_Maintainers if you want to take care of it <maintainer-needed> |
| Status: |
CONFIRMED
---
|
|
|
| Severity: |
normal
|
CC: |
barzog, corentin.labbe, jstein, net-mail+disabled, sam
|
| Priority: |
High
|
Keywords: |
PATCH |
| Version: |
unspecified | |
|
| Hardware: |
All | |
|
| OS: |
Linux | |
|
| Whiteboard: |
|
|
Package list:
|
|
Runtime testing required:
|
---
|
|---|
| Attachments: |
run saslauthd as a non privilegied user
|
saslauthd can run as simple user. current installations install/run it as root Reproducible: Always Actual Results: saslauthd run as root Expected Results: saslauthd run as saslauthd Add an saslauthd_user parameter in /etc/conf.d/saslauthd SASLAUTHD_USER="saslauthd" modify init script from: start-stop-daemon --start --quiet --exec /usr/sbin/saslauthd to start-stop-daemon --start --quiet -c ${SASLAUTHD_USER} --exec /usr/sbin/saslauthd /etc/saslauthd.conf must be root:saslauthd 640 /var/lib/sasl2 must be root:saslauthd umask 007