On Sat, Apr 12, 2008 at 07:51:22PM +0200, Julien Cristau wrote: > On Sat, Apr 12, 2008 at 19:15:45 +0200, أحمد المحمودي wrote: > > > Hello, > > > > Actually patch 05_setuid.dpatch that was introduced in 1.0.5-2 > > comments the line: > > > > 311 seteuid(user_id); > > > > which is the line to drop setuid root. > > The reason was to fix a bug that made some control keys not to work > > when 'acon' was run without sudo. > > > So you're building a package with a setuid root binary, comment out the > call to seteuid (so your binary doesn't drop privileges), and none of > the DDs who look at the package (and sponsor it into the archive) tell > you that's not acceptable? > > That's... broken.
I have to admit. I did a mistake. I'm not going to find an excuse. I take full responsibility. Ahmed, do you have a deb or should I do an upload and drop the patch ? -- GPG-Key: 0xA3FD0DF7 - 9F73 032E EAC9 F7AD 951F 280E CB66 8E29 A3FD 0DF7 Debian User and Developer. Homepage: www.foolab.org
signature.asc
Description: Digital signature
