[Pkg-privacy-maintainers] Bug#1075885: snowflake-proxy: Runs as root for no reason
h
h at hackclub.app
Sun Jul 7 00:46:00 BST 2024
Package: snowflake-proxy
Version: 2.5.1-1+b3
Severity: normal
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situatio
I installed the snowflake-proxy package, and decided to make sure that it was running as an unprivileged user like any sane program would.
Instead, I discovered that it runs as root with absolutely nothing to protect other programs on the same system from it by default (due to the absence of a `User=` or `DynamicUser=` line in snowflake-proxy.service).
snowflake-proxy works perfectly without root privileges (tested and confirmed working with `DynamicUser=yes` in snowflake-proxy.service).
-- System Information:
Debian Release: 12.6
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.1.0-21-amd64 (SMP w/20 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages snowflake-proxy depends on:
ii libc6 2.38-6
snowflake-proxy recommends no packages.
snowflake-proxy suggests no packages.
-- no debconf information
More information about the Pkg-privacy-maintainers
mailing list