http://bugzilla.novell.com/show_bug.cgi?id=540966 User suse@tlinx.org added comment http://bugzilla.novell.com/show_bug.cgi?id=540966#c5 L. A. Walsh <suse@tlinx.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WONTFIX | --- Comment #5 from L. A. Walsh <suse@tlinx.org> 2009-11-10 10:13:29 PST --- This bug isn't about nscd running as root. It's about nscd running as user 'nobody' vs. a differentiated user. nscd has never run as root AFAIK, and if it did, that would be a good reason not to run it, since regular, non-root users can look up their password when logging in without being root. Requiring a long-running daemon to be 'root' provides a whole new attack surface in regards to security. You can't just make a change to run it as root without a thorough security review of nscd. I don't get the feeling that it was designed with security in mind, but I may be wrong. If nscd needs to run as root, that should be a separate bug -- please don't hijack closing this bug with a need to run nscd as root, as that would be new functionality. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.