On Mon, 29 Feb 2016 09:55:45 -0700, "Todd C. Miller" wrote: > Most of the PRIV_START / PRIV_END should be removed. There are a > few instances where we need to drop setgid when opening files, > however. Removing those calls needs to be done very carefully.
It is also worth rethinking whether lpr/lprm really need to be setuid at all now or whether we can simply rely on being setgid daemon. I was concerned about having non daemon-owned files in the spool dirs. That may not really be an issue, though. - todd
