On Fri, Jan 12, 2007 at 10:46:36PM +0000, Stephen Bennett wrote: > > On Sat, 2007-01-13 at 00:53 +0900, Georgi Georgiev wrote: > > They have to be able to read /usr/games/lib. > In which case adding the portage user to the games group seems overall > to be a better solution than requiring root privileges to build. The problem then is that when sandbox is not used (no FEATURES=usersandbox), the portage user has too much access to the games stuff in general.
The vpopmail stuff has/has a similar issue (upstream is working on solving it via a different avenue at which point the problem will go away). There is a little bit of well-audited code that runs setgid vpopmail with privilege separation stuff. This is so that it can authenticate against a file that contains a password (for connecting to MySQL for user verification). However, if you need to link against it during the build process, you need to either be root, or be in the group with access to the file you are linking against. Putting the portage user into the special group would mean that somebody could steal the MySQL password - so do you RESTRICT=userpriv, or fail the build? -- Robin Hugh Johnson Gentoo Linux Developer E-Mail : [EMAIL PROTECTED] GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
pgpuY5z3pQkFS.pgp
Description: PGP signature
