On March 1, 2007, Brian wrote: > Please could someone spell out the reason for building software as an > unprivileged user? This is recommended in the BLFS book and elsewhere > (though not in LFS), but I can't find a full explanation. > > If running 'make' as root could (accidentally? maliciously?) trash my > system, doesn't the same apply when I have to run 'make install' as > root? Is there any qualitative difference in security risk? > > (The reason I'm asking, in case you're interested, is that I'm > automating the build using a simple bash script for each package, and > it would be simpler to run everything as root rather than having to > add 'sudo' to my system, which is the only other way I can see of > doing it.) > Sorry Brian, I did not read your post closely enough. I think you have no choice but to run such a script as root. However, maybe you could build all the packages (as user) then, when they are all built, stop and do a sudo/su and install everything at once. I think everybody has sudo/su.
Just an idea. I am sure others more experienced than me would have better informed ideas. I believe there is an effort already on its way to do what you are doing. Shawn -- http://linuxfromscratch.org/mailman/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
