H Ludwig,
Well, if it wasn't the build would abort with an error :-) Having directories with setgid bits is rather unusual though. Are you sure it's required?
It the way the OTRS guys do it. # set the var directory to OTRS and webserver user my @Dirs = ( "$DestDir/var/article", "$DestDir/var/log", "$DestDir/var/tmp", "$DestDir/var/spool", "$DestDir/var/stats", "$DestDir/var/sessions" ); for my $Dir (@Dirs) { if ( !-e $Dir ) { mkdir $Dir; } } find( \&makeWritableSetGid, @Dirs ); sub makeWritableSetGid { my $File = $_; my $Mode; if ( -d $File ) { $Mode = 02775; } else { $Mode = 0664; } if ($NotRoot) { $Mode |= 2; safeChmod( $Mode, $File ); } else { safeChown( $OtrsUserId, $WebGroupId, $File ); safeChmod( $Mode, $File ); } } not sure what is worse. using suid-bit, or having "wwwrun" as DIR-owner. cu Chris -- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org