Dave Howorth wrote:
On Thu, 02 Feb 2023 16:19:10 +0100 Per Jessen <per@jessen.ch> wrote:
Dave Howorth wrote:
to what purpose? It doesn't stop bad actors accessing the modules in some other way. What were the systemd people smoking?
I don't think systemd is to blame (other than for providing the features), I think it is SUSE / ourselves:
https://en.opensuse.org/openSUSE:Security_Features -> Systemd hardening effort
Yes, my apologies to the systemd folks. Somewhat of a sledgehammer approach by the opensuse folks. Move fast and break things, I suppose :(
There was a comment in the the wiki page, about the brute force mass implementation and how maintainers could decline. I guess nobody did. Given that 'locate' isn't installed by default, maybe it's not used an awful lot anymore.
It seems like adding a comment to https://bugzilla.suse.com/show_bug.cgi?id=1181400 pointing out that it breaks locate would be the right thing to do.
Yep, agree. -- Per Jessen, Zürich (8.2°C) Member, openSUSE Heroes (2016 - present) We're hiring - https://en.opensuse.org/openSUSE:Heroes