On 2023-02-02 17:31, Per Jessen wrote:
Dave Howorth wrote:
On Thu, 02 Feb 2023 16:19:10 +0100 Per Jessen <per@jessen.ch> wrote:
Dave Howorth wrote:
to what purpose? It doesn't stop bad actors accessing the modules in some other way. What were the systemd people smoking?
I don't think systemd is to blame (other than for providing the features), I think it is SUSE / ourselves:
https://en.opensuse.org/openSUSE:Security_Features -> Systemd hardening effort
Yes, my apologies to the systemd folks. Somewhat of a sledgehammer approach by the opensuse folks. Move fast and break things, I suppose :(
There was a comment in the the wiki page, about the brute force mass implementation and how maintainers could decline. I guess nobody did.
Given that 'locate' isn't installed by default, maybe it's not used an awful lot anymore.
It seems like adding a comment to https://bugzilla.suse.com/show_bug.cgi?id=1181400 pointing out that it breaks locate would be the right thing to do.
Yep, agree.
Done. -- Cheers / Saludos, Carlos E. R. (from Elesar, using openSUSE Leap 15.4)