To clarify my earlier comment, I am not saying that this feature shouldn't be evaluated. I subscribed ~ubuntu-security precisely because I want the security team to weigh in.
I am *not* making the argument that (a) because systemd provides this feature, or (b) run0 is not as widely used as sudo, that the feature does not deserve a security audit. I *am* making the argument that the "ease of accessibility" provided by `run0 --empower` is not a strong enough reason on its own to pull the feature from 26.04. Further, I am adding the context that this same functionality is already available to systemd units, e.g. via `systemd-run -p AmbientCapabilities=~`. Hence, if the security team does find problems with this mechanism, then removing the --empower flag from run0 is not sufficient. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2132177 Title: Please disable the run0 --empower feature To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/2132177/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
