Hello list, I have a small box as a web development host, running hardened-sources, which I'll also want to expose to the Internet for odd periods. As that load is so light, I thought it might be a good idea to put the spare CPU to some use by running BOINC.
The startup script, however, changes the entire boinc directory's ownership to the user nominated in /etc/conf.d/boinc. The problem is that, on a hardened system, the ca-bundle.crt file must be owned by root. This could be fixed with a small addition to the startup script, but before I open a bug, does the panel think I ought to be running BOINC on an exposed system? I don't know any of its history to argue one way or the other, but the team does try to avoid security lapses. -- Regards Peter
