https://bugzilla.novell.com/show_bug.cgi?id=792928 https://bugzilla.novell.com/show_bug.cgi?id=792928#c0 Summary: security audit of E17 Classification: openSUSE Product: openSUSE.org Version: unspecified Platform: Other OS/Version: Other Status: ASSIGNED Severity: Normal Priority: P5 - None Component: 3rd party software AssignedTo: security-team@suse.de ReportedBy: tcech@suse.com QAContact: opensuse-communityscreening@forge.provo.novell.com CC: simon@simotek.net Found By: L3 Blocker: --- I'd like to ask for security audit of e17 package from X11:Enlightenment:Factory package so I can push it into factory. There are some suid binaries taking care of backlight, cpufreq, ... Thanks. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c1
--- Comment #1 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c2
--- Comment #2 from Tomas Cech
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c3
--- Comment #3 from Tomas Cech
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c4
--- Comment #4 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c5
--- Comment #5 from Tomas Cech
In general our guideline is to avoid setuid root binaries whereever possible, and solve the problems they solve with better design(s).
(As setuid root binaries are found to be entrace vectors for exploits from time to time, even without the binary itself at fault, but also because of unsafe library usage....)
In this field you have superior knowledge for sure and I can imagine misuse of such binaries as well. On the other hand other distribution accepted these suid binaries without troubles, they're used and tested for years.
Here really GNOME, KDE, the Linux Plumbers (freedesktop.org) worked together to have a working solution without setuid (and have a general single system service). And other desktops are welcome to also use it.
So if the design does not require it, no.
This is the problem. GNOME, KDE and Linux Plumbers are not the only meter in this world. Suid binary can be misused in the worst scenario, but at least every administrator is aware of such security risks. On the other hand we override traditional permissions system, rely on more applications and we add another authentication system which is configured by unreadable XML configurations which fears every administrator or user I know. You surely know that the biggest security hole of system is administrator himself. At the end you still need root rights for performing that tasks, but you only believe more in *Kits which are even younger than the binaries we discuss. I understand that you need to keep interface between root rights and user as tight as possible, but with this action you remove from openSUSE users the freedom of choice. Would be acceptable to separate this binaries from the main package and the subpackage call like `e17-dangerous-suid-bin' which won't be installed as dependency (thus require manual action for installation)?
( We could even replace the sys helper by a perl/python/other script that wraps the necessary DBUS interfaces or other shell scripts. )
Yes, we could write scripts for HAL, *Kits or any other standard currently popular and maintain it. Or we can have one, working already and spend that time elsewhere to make openSUSE working again.
For cpufreq ... i dont know if there is a interface, would have to put out inquires.
Please, be aware that E17 is very good choice for ARM CPUs as it is has low requirements, support for OpenGL ES and optimizations for NEON and VFPv3. So if there is a way to keep it working... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c6
--- Comment #6 from Thomas Biege
https://bugzilla.novell.com/show_bug.cgi?id=792928
https://bugzilla.novell.com/show_bug.cgi?id=792928#c7
--- Comment #7 from Tomas Cech
participants (1)
-
bugzilla_noreply@novell.com