Subject: Re: pkg_comp runs everything as root
To: Jeremy C. Reed <firstname.lastname@example.org>
From: Steven M. Bellovin <email@example.com>
Date: 04/24/2006 11:40:14
On Mon, 24 Apr 2006 08:18:26 -0700 (PDT), "Jeremy C. Reed"
> On Sun, 23 Apr 2006, Christian Hattemer wrote:
> > In summary: Are there real concerns in this area, or am I just paranoid?
> I would not be concerned. Note that even without pkg_comp the default is
> to do the installation targets as root and we do trust/allow that.
> As for me, I just manually setup build environment and chroot and do my
> builds as non-root and installs and packaging as root.
> You could do the builds and installs and packaging as non-root too. (And I
> do that frequently on some systems.) And some packages wont' build
I'd like to do builds as non-root, but since builds generally recurse and
install other packages, I don't see how that would work.
--Steven M. Bellovin, http://www.cs.columbia.edu/~smb