[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-14 Thread Launchpad Bug Tracker
This bug was fixed in the package libvirt - 4.0.0-1ubuntu5 --- libvirt (4.0.0-1ubuntu5) bionic; urgency=medium * run dnsmasq as libvirt-dnsmasq (LP: #1743718) - d/libvirt-daemon-system.postinst: add libvirt-dnsmasq user and group - d/libvirt-daemon-system.postrm: remove

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-08 Thread ChristianEhrhardt
** Tags added: 4.0.0-1ubuntu5 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1743718 Title: libvirt-daemon-system package runs dnsmasq as nobody To manage notifications about this bug go to:

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-07 Thread Seth Arnold
Thanks Christian, this is very nice. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1743718 Title: libvirt-daemon-system package runs dnsmasq as nobody To manage notifications about this bug go to:

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-07 Thread ChristianEhrhardt
A fix for this is queued up for when a few more apparmor issues got an ack upstream so I can deal with them in one upload. Until that feel free to review [1]. It includes the old code plus: - creation for an own group (after discussion with Seth on the sprint) - upgrade from Xenial will fix the

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-02 Thread ChristianEhrhardt
I have something prepared that "works" but I'm not really happy. I'll discuss with Seth on the sprint next week on the options we have on this. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1743718

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-03-01 Thread ChristianEhrhardt
I looked at bringing back the old Delta, updating it to the new libvirt and fixing up the issues we had in the past: 1. not be part of the livbirt group (worse than user nobody) 2. remove users on purge I wonder on the group it should get ... adduser by default for a --system group picks

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-02-28 Thread Seth Arnold
Thanks Christian, I think you're right that creating a new user account for this service is the way to go. Nice catch from Guido to *not* give libvirt group membership. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu.

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-02-28 Thread ChristianEhrhardt
Hmm, not sure why my mailer decided this isn't important - it is! Lost a few days on it due to not being visible yet - I beg all your pardon for this. /slap my mail filers This essentially came due to: 1. myself wanting to bring the Delta we had (by Serge) to run as libvirt-dnsmasq to Debian in

[Bug 1743718] Re: libvirt-daemon-system package runs dnsmasq as nobody

2018-02-27 Thread Apicultor
** Description changed: - libvirt-daemon-system package runs two seemingly-identical (same - invocation, same config file) copies of dnsmasq (one of which runs as - root). Presumably only one copy should be running, owned by 'nobody'. - + libvirt-daemon-system package runs dnsmasq as 'nobody'.