https://bugzilla.novell.com/show_bug.cgi?id=872276 https://bugzilla.novell.com/show_bug.cgi?id=872276#c1 Sebastian Krahmer <krahmer@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO CC| |security-team@suse.de InfoProvider| |hrvoje.senjan@gmail.com --- Comment #1 from Sebastian Krahmer <krahmer@suse.com> 2014-04-15 09:29:00 UTC --- Should not be of much problem, as its only g+s nogroup: chgrp nogroup '\${KDESUD_PATH}' && chmod g+s '\${KDESUD_PATH}'\" The peer-id check of the socket still seems there when pwd caching is used. Also see here: https://www.suse.com/support/security/advisories/2001_002_kdesu_txt.html However it needs to be enabled during build, e.g. there must be a string of "socket not owned by me! socket uid =" inside the binary. Then everything should be fine. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.