-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 02/22/2016 09:22 PM, Noah Meyerhans wrote:
> On Mon, Feb 22, 2016 at 09:15:37PM +0100, John Paul Adrian Glaubitz
> wrote:
>> I didn't say you should remove setuid altogether. I just said you
>> should use capabilties on Linux by default by
On Mon, Feb 22, 2016 at 09:15:37PM +0100, John Paul Adrian Glaubitz wrote:
> I didn't say you should remove setuid altogether. I just said you should
> use capabilties on Linux by default by setting:
>
> Depends: libcap2-bin [linux-any]
Recommends are installed by default, so the default
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 02/22/2016 04:59 PM, Noah Meyerhans wrote:
> Thanks. In the meantime, I've submitted 815566 against libcap2-bin
> requesting that it be raised to Priority: important to match
> iputils and systemd, which is the right solution hered.
Probably a
On Mon, Feb 22, 2016 at 04:01:24PM +0100, John Paul Adrian Glaubitz wrote:
> I'll have to re-test that. Again, this occurred during a FAI
> installation, that is an automated installation.
Thanks. In the meantime, I've submitted 815566 against libcap2-bin
requesting that it be raised to Priority:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 02/22/2016 03:53 PM, Noah Meyerhans wrote:
> On Mon, Feb 22, 2016 at 08:22:50AM +0100, John Paul Adrian Glaubitz
> wrote:
>> Can we just fix this bug first so that people don't install
>> iputils in setups like FAI or debootstrap and keep
On Mon, Feb 22, 2016 at 08:22:50AM +0100, John Paul Adrian Glaubitz wrote:
> Can we just fix this bug first so that people don't install iputils
> in setups like FAI or debootstrap and keep wondering why iputils-ping
> doesn't work for non-root users?
Please explain how ping is not usable by
On 02/22/2016 03:49 AM, Noah Meyerhans wrote:
> I don't see a bug against systemd for this, but there probably should be
> one. Either that or we should amend policy to remove this requirement,
> but I suspect that the ramifications of that would far-reaching.
Can we just fix this bug first so
(Apologies for the 11 month turn-around!)
On Thu, Mar 19, 2015 at 09:59:39AM +0100, John Paul Adrian Glaubitz wrote:
> > iputils-ping, as priority "important", cannot declare a dependency
> > on libcap2-bin, which is priority "optional". Thus, the Recommends
> > relationship. It is perfectly
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 03/19/2015 04:24 AM, Noah Meyerhans wrote:
iputils-ping, as priority important, cannot declare a dependency
on libcap2-bin, which is priority optional. Thus, the Recommends
relationship. It is perfectly valid to run system with
iputils-ping
Source: iputils
Version: 3:20121221-5
Severity: normal
Hello!
The new version of iputils in Jessie uses capabilities instead of set-uid
to gain the necessary priviliges to send ICMP requests. While this is a
great improvement with regards to security, it currently may lead to
rendering the ping
On Wed, Mar 18, 2015 at 12:12:48PM +0100, John Paul Adrian Glaubitz wrote:
The new version of iputils in Jessie uses capabilities instead of set-uid
to gain the necessary priviliges to send ICMP requests. While this is a
great improvement with regards to security, it currently may lead to
11 matches
Mail list logo
