Your message dated Fri, 28 Nov 2008 03:34:55 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Re: Bug#505967: initgroups(): Operation not permitted
has caused the Debian Bug report #505967,
regarding s-s-d: initgroups(): Operation not permitted
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
505967: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505967
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: dpkg
Version: 1.13.25
Specifically: start-stop-daemon
Error message: start-stop-daemon: Unable to set initgroups() with gid 1003
(Operation not permitted)
I understand the error message, and am happy there is such a check of
course.
OTOH, the user nominated to run the service was the one who ran the script
I think that in the case of --chuid == USER ... the check on the perms
should be bypassed.
In effect, my user can stop a service because he owns it, but can't start it
up again because start-stop-daemon wont let him impersonate himself.
First bug report to debian, i hope i was clear enough.
Thanks!
--
Rusty Russel said that any one quoting him in an email signature was an
idiot. Does paraphrasing count?
--- End Message ---
--- Begin Message ---
Version: 1.14.16
Hi!
On Mon, 2008-11-17 at 10:45:56 +0100, Raphael Hertzog wrote:
> On Mon, 17 Nov 2008, lawrence macguire wrote:
> > Package: dpkg
> > Version: 1.13.25
> >
> > Specifically: start-stop-daemon
> > Error message: start-stop-daemon: Unable to set initgroups() with gid 1003
> > (Operation not permitted)
> >
> > I understand the error message, and am happy there is such a check of
> > course.
> >
> > OTOH, the user nominated to run the service was the one who ran the script
> > I think that in the case of --chuid == USER ... the check on the perms
> > should be bypassed.
>
> Can you verify if the problem is also present in lenny's version of
> start-stop-daemon (dpkg 1.14.22) ?
On etch:
$ /sbin/start-stop-daemon -c guillem -x /bin/true -S && echo ok
/sbin/start-stop-daemon: Unable to set initgroups() with gid 1000 (Operation
not permitted)
On lenny/sid:
$ /sbin/start-stop-daemon -c guillem -x /bin/true -S && echo ok
ok
> I know that Guillem refactored parts of the code related to uid/gid
> change, it might be that the problem is already fixed.
This was actually a targetted fix. :)
[ Guillem Jover ]
* Check current uid and gid in start-stop-daemon before calling setuid,
setgid and initgroups. Closes: #222524
Based on a patch by Samuel Thibault.
Thus closing.
regards,
guillem
--- End Message ---