Subject: Re: pkg_comp runs everything as root
To: Jeremy C. Reed <reed@reedmedia.net>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: pkgsrc-users
Date: 04/24/2006 11:40:14
On Mon, 24 Apr 2006 08:18:26 -0700 (PDT), "Jeremy C. Reed"
<reed@reedmedia.net> wrote:
> On Sun, 23 Apr 2006, Christian Hattemer wrote:
>
> > In summary: Are there real concerns in this area, or am I just paranoid?
>
> I would not be concerned. Note that even without pkg_comp the default is
> to do the installation targets as root and we do trust/allow that.
>
> As for me, I just manually setup build environment and chroot and do my
> builds as non-root and installs and packaging as root.
>
> You could do the builds and installs and packaging as non-root too. (And I
> do that frequently on some systems.) And some packages wont' build
> though.
>
I'd like to do builds as non-root, but since builds generally recurse and
install other packages, I don't see how that would work.
--Steven M. Bellovin, http://www.cs.columbia.edu/~smb