On Mon, May 12, 2008 at 00:22:29 +0200, Petter Reinholdtsen wrote: > [Julien Cristau] > > If you tested that and are confident that it works, sure. I never > > used xfs myself, so I don't know. > > I am quite confident that user nobody will have the required acces to > the font files. But I just tested modifying /etc/init.d/xfs to > include --chuid nobody, and it fail to start because it did not get > write access to /var/run/xfs.pid. The /var/run/ directory is only > writable by user root. There is also the case with /tmp/.font-unix/ > needing to be writable by the xfs process. So I guess the patch to > solve this is a but more than just modifying the call to > start-stop-daemon. :) > Add "-user nobody -droppriv" to the xfs command line arguments.
Cheers, Julien -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
