Shutdown hooks running with euid=root
Tobias Grimm
tobias.grimm at e-tobi.net
Mon Jan 28 18:12:51 UTC 2008
Hi!
While checking an add-on Malte Forkel is currently working on, I became
aware, that VDR runs the Shutdown-Hooks always as root (through the
wrapper script). Wouldn't it be safer to just run the shutdown-command
with the setuid-wrapper-script? Or even better - don't run anything as
root at all and instead let the default shutdown command e.g. be "sudo
halt", so the system admin must explicitly give the user vdr the right
to execute shutdown via sudo?
bye,
Tobias
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 544 bytes
Desc: OpenPGP digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-vdr-dvb-devel/attachments/20080128/ddf60c50/attachment.pgp
More information about the pkg-vdr-dvb-devel
mailing list