Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 272393

Summary: dev-libs/cyrus-sasl should set saslauthd to run under its own user
Product: Gentoo Linux Reporter: montjoie <corentin.labbe>
Component: Current packagesAssignee: No maintainer - Look at https://wiki.gentoo.org/wiki/Project:Proxy_Maintainers if you want to take care of it <maintainer-needed>
Status: CONFIRMED ---    
Severity: normal CC: barzog, corentin.labbe, jstein, net-mail
Priority: High Keywords: PATCH
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Attachments: run saslauthd as a non privilegied user

Description montjoie 2009-06-03 09:32:08 UTC
saslauthd can run as simple user. current installations install/run it as root

Reproducible: Always

Actual Results:  
saslauthd run as root

Expected Results:  
saslauthd run as saslauthd

Add an saslauthd_user parameter in /etc/conf.d/saslauthd
SASLAUTHD_USER="saslauthd"
modify init script from:
start-stop-daemon --start --quiet --exec /usr/sbin/saslauthd
to
start-stop-daemon --start --quiet -c ${SASLAUTHD_USER} --exec /usr/sbin/saslauthd

/etc/saslauthd.conf must be root:saslauthd 640

/var/lib/sasl2 must be root:saslauthd umask 007
Comment 1 Mike Auty gentoo-dev 2009-06-06 17:55:32 UTC
Next time, please mention the package you're talking about, rather than just the binary.  Thanks...
Comment 2 montjoie 2009-06-08 07:24:57 UTC
Sorry, it's dev-libs/cyrus-sasl

Comment 3 montjoie 2010-03-24 14:19:39 UTC
Created attachment 225107 [details, diff]
run saslauthd as a non privilegied user
Comment 4 montjoie 2011-06-14 08:40:45 UTC
saslauthd works now for years under saslauth user.