Mock and consolehelper
Kevin Kofler
kevin.kofler at chello.at
Wed Dec 19 07:19:33 UTC 2007
I have noticed that mock in Rawhide has been changed to drop the SUID helper,
instead consolehelper is used to run the entire mock as root. IMHO, this is a
regression:
* It now means you have to know the root password to run mock. Before, it was
possible to give out mock access and only that simply by making the user a
member of the mockbuild group. Now the only way to do that is to allow running
all of mock as root, which probably opens up several ways to get full root
access from there.
* It means mock has to be run interactively. What are the implications of this
on the builders? Will they have to install all of mock SUID root, or set up
consolehelper in a way which effectively does the same?
* It reduces security, as instead of a small helper doing only a few controlled
operations, you now run all of mock as root. Sure, it's Python, so buffer
overflows probably can't happen, but still, trigger any bug in mock with a
trojaned SRPM and you have root.
Kevin Kofler
More information about the fedora-devel-list
mailing list