https://bugzilla.novell.com/show_bug.cgi?id=209288 Summary: AUDIT‑0 newest seahorse sources have suid/sgid permissions warning Product: openSUSE 10.2 Version: Alpha 4 plus Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: GNOME - Platform AssignedTo: security-team@suse.de ReportedBy: jhargadon@novell.com QAContact: qa@suse.de I was trying to update autobuild with the newest sources for seahorse. I received the following warning: file /opt/gnome/bin/seahorse-daemon is packaged with suid/sgid permissions but is not listed in any of /etc/permissions* please contact security team The current version in autobuild is 0.8. This package does not have the seahorse-daemon file in it. I am trying to update it to version 0.9.5 The source code is from gnome.org. I looked through CVS history but the history does not go back far enough to show when this file was added or how it is used. So I do not know what it does or why the permissions are set the way they are. The information from http://live.gnome.org/Seahorse is: Seahorse is a GNOME application for managing encryption keys. It also integrates with nautilus, gedit and other places for encryption, decryption and other operations. There is information on the daemon directory that says: Code that wraps the agent and provides DNS-SD keyserver and DBUS functionality -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.