Summary: | foldingathome 3.24 should not run as root | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Andreas Schwarz <gentoo> | ||||
Component: | Vulnerabilities | Assignee: | Gentoo Science Related Packages <sci> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | major | ||||||
Priority: | High | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Andreas Schwarz
2004-01-05 12:37:06 UTC
Created attachment 23487 [details, diff]
patch for foldingathome 3.24
please see the attached patch excellent patch. Perhaps the process should also be chrooted? It would also be nice to automatically set up the client.cfg file to have the Gentoo group as default. Is really no one of the gentoo people interested in this patch? If you think it's wise to have a software automatically download code from the net and execute it as root, go ahaed - I think it isn't, especially if there is absolutely no need for it! -r1 is in CVS now, a little different from yours (don't like the sudo dependency). There are also a few other changes, please test if it works for you. Andreas, if we thought this was no issue, we would have closed it as WONTFIX :-) |