Mailinglist Archive: opensuse-packaging (171 mails)
| < Previous | Next > |
Re: [opensuse-packaging] New lightdm user and group
- From: Guido Berhoerster <gber@xxxxxxxxxxxx>
- Date: Mon, 1 Aug 2011 16:07:57 +0200
- Message-id: <20110801140757.GD4065@wopr.local.invalid>
* Ludwig Nussel <ludwig.nussel@xxxxxxx> [2011-08-01 09:27]:
Right, the above would prevent the lightdm daemon log being
overwritten by a rogue greeter though. logrotate is no issue
since logs are overwritten on restart as with other display
managers.
OK, thanks.
--
Guido Berhoerster
--
To unsubscribe, e-mail: opensuse-packaging+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-packaging+help@xxxxxxxxxxxx
Guido Berhoerster wrote:
* Guido Berhoerster <gber@xxxxxxxxxxxx> [2011-07-29 16:21]:
* Ludwig Nussel <ludwig.nussel@xxxxxxx> [2011-07-29 14:55]:
Pavol Rusnak wrote:
On 07/26/2011 12:49 AM, Guido Berhoerster wrote:
/var/run/lightdm lightdm:lightdm 751
/var/log/lightdm lightdm:lightdm 750
/var/lib/lightdm lightdm:lightdm 750
The package is X11:xfce/lightdm.
Security team: is this the correct setup we could use? (User and group
are created in %pre scriptlet of the package).
Almost. Log directories shouldn't be writable by the daemon userĀ¹.
Greeters are exec'd as the "lightdm" user need to create their
logfiles somehow.
GDM seems to do the same, from GNOME:Factory/gdm gdm.spec:
%attr(750,gdm,gdm) %dir %{_localstatedir}/log/gdm
Looking at an actual system with gdm running /var/log/gdm has the
sticky bit set (does gdm chmod it?) which seems like a solution
to the issue.
So should I use
/var/log/lightdm root:lightdm 1770
instead?
That doesn't make it better and gdm isn't necessarily a role model :-)
The clean solution would be to have the master process running as root
create the log files before spawning child processes as unprivileged
user. However, this is not a grave problem as long as you don't use
logrotate.
Right, the above would prevent the lightdm daemon log being
overwritten by a rogue greeter though. logrotate is no issue
since logs are overwritten on restart as with other display
managers.
What do I need to do in order to get this into the rpmlint list
of allowed users?
Nothing, I just made the change. Filing a submit request against rpmlint
is sufficient for this case, there is no formal process for registering
users (yet).
OK, thanks.
--
Guido Berhoerster
--
To unsubscribe, e-mail: opensuse-packaging+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-packaging+help@xxxxxxxxxxxx
| < Previous | Next > |