2014-06-20 20:50 GMT+09:00 Christian Boltz
Am Freitag, 20. Juni 2014 schrieb Ludwig Nussel:
1xx wrote:
I want the "cups-pdf" to go into official repository.
CUPS-PDF is a PDF writer backend for CUPS. Official site: http://www.cups-pdf.de/
Uh, it runs as root and writes into directories owned by some user? Better ask security to take a look.
Does it at least write to a "hardcoded" location (for example ~/cupspdf) in the user's home directory?
If yes, shipping it with an AppArmor profile would be a good idea. (If needed, I can help you to fine-tune the profile, however I'm too busy at the moment. I'll have more time in July - at least I hope so ;-)
Even if the output directory is user-configurable, having an AppArmor profile could help to avoid access to security-critical files - but of course a restriction like "only allow write access in ~/cupspdf" is much more secure.
I wrote a mail to opensuse-security ML. http://lists.opensuse.org/opensuse-security/2014-06/msg00017.html Johannes gave the reply.
Do the necessary changes to get the resulting PDF delivered to the users home directory. With that writing a AppArmor policy should be straight forward. If you provide a policy I'll review it.
Christian, May I request you about AppArmor?
I read /etc/apparmor/* and /etc/apparmor.d/*,
and I am studying about AppArmor now.
But It is difficult for me.
If you have an opinion, please say it. >all
http://lists.opensuse.org/opensuse-factory/2014-06/msg00169.html
Thanks.
--
1xx