[opensuse] opensuseupdater and 'secure' file permissions
Greetings All - I'm running openSuSE 10.2 and running into Bug 282674. The gist of the problem is that if I change the system's file permissions to be 'secure', then the OpenSuSE update applet fails with a yellow warning triangle. Bug report 282674 confirms that the updater requires setuid privileges for certain functions. In my naivete, I tried to set the opensuseupdater to setuid (root) just to see if that would take care of it. That did not work. I got a message stating: "The KDE libraries are not designed to run with suid privileges. ERROR: Communication problem with opensuseupdater, it probably crashed." I'd like to know if there has been a fix for this? or if you're using a temporary workaround? Thanks in advance. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Fri, Nov 09, 2007 at 09:20:36AM -0800, JB wrote:
Greetings All - I'm running openSuSE 10.2 and running into Bug 282674.
The gist of the problem is that if I change the system's file permissions to be 'secure', then the OpenSuSE update applet fails with a yellow warning triangle. Bug report 282674 confirms that the updater requires setuid privileges for certain functions.
In my naivete, I tried to set the opensuseupdater to setuid (root) just to see if that would take care of it. That did not work. I got a message stating:
"The KDE libraries are not designed to run with suid privileges. ERROR: Communication problem with opensuseupdater, it probably crashed."
I'd like to know if there has been a fix for this? or if you're using a temporary workaround?
Yes, do not use opensuseupdater in secure mode, or make zypp-check-patches.wrapper also setuid in /etc/permissions.secure Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
--- Marcus Meissner
Yes, do not use opensuseupdater in secure mode, or make zypp-check-patches.wrapper also setuid in /etc/permissions.secure
Ciao, Marcus
Thanks Marcus, that works. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On 11/10/2007 01:20 AM, JB wrote:
Greetings All - I'm running openSuSE 10.2 and running into Bug 282674.
The gist of the problem is that if I change the system's file permissions to be 'secure', then the OpenSuSE update applet fails with a yellow warning triangle. Bug report 282674 confirms that the updater requires setuid privileges for certain functions. <snip> I'd like to know if there has been a fix for this? or if you're using a temporary workaround?
If you compare permissions.easy with permissions.secure, you will see what you need to do. I would suggest adding /usr/sbin/zypp-checkpatches-wrapper root.root 4755 to your permissions.local just in case an update over writes changes, as this one will be left alone. That way, SUSEconfig will not change the permissions incorrectly. -- Joe Morris Registered Linux user 231871 running openSUSE 10.3 x86_64 -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (3)
-
JB -
Joe Morris (NTM) -
Marcus Meissner