Subject: Re: pkg_comp runs everything as root
To: Jeremy C. Reed <reed@reedmedia.net>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: pkgsrc-users
Date: 04/24/2006 11:40:14
On Mon, 24 Apr 2006 08:18:26 -0700 (PDT), "Jeremy C. Reed"
<reed@reedmedia.net> wrote:

> On Sun, 23 Apr 2006, Christian Hattemer wrote:
> 
> > In summary: Are there real concerns in this area, or am I just paranoid?
> 
> I would not be concerned. Note that even without pkg_comp the default is 
> to do the installation targets as root and we do trust/allow that.
> 
> As for me, I just manually setup build environment and chroot and do my 
> builds as non-root and installs and packaging as root.
> 
> You could do the builds and installs and packaging as non-root too. (And I 
> do that frequently on some systems.) And some packages wont' build 
> though.
> 
I'd like to do builds as non-root, but since builds generally recurse and
install other packages, I don't see how that would work.


		--Steven M. Bellovin, http://www.cs.columbia.edu/~smb