On Nov 22, 2006, at 3:37 PM, Frank Barknecht wrote:
Hallo,
Mathieu Bouchard hat gesagt: // Mathieu Bouchard wrote:
* I removed the setuid feature because Pd isn't a proper setuid
app, as
it doesn't make any checks to prevent the user from abusing the
access
it gets. I don't see why anyone should use this feature. Login
as root
if you want to login as root.
Good idea: I would even suggest that this feature is dropped from
Miller's Pd as well (on Linux at least, I don't know other OSses
anymore) as there now are much better mechanisms to alleviate priority
than running as root, especially the PAM-rtlimits approach. I don't
run a setuid-root Pd binary for months now.
Yes, sounds like its time to ditch this.
However I have believed that Pd *does* drop root priviledges after it
has changed its priority. Have I been fooled?
When I last checked, it stayed running as root on GNU/Linux.
.hc
------------------------------------------------------------------------
Man has survived hitherto because he was too ignorant to know how to
realize his wishes. Now that he can realize them, he must either
change them, or perish. -William Carlos Williams
_______________________________________________
PD-dev mailing list
[email protected]
http://lists.puredata.info/listinfo/pd-dev
