More PATH fallout. Who decided this was a good idea?

Steve Grubb sgrubb at redhat.com
Sat Dec 6 12:48:00 UTC 2008


On Saturday 06 December 2008 01:06:41 Seth Vidal wrote:
> And do we seriously think we can keep the code away from a non-root user
> by chmodd'ing the binaries? A user can get a binary for anything
> fedora can install in about 30s w/firefox.

Sure and that can be audited. We can also point out that this act takes the 
system out of the certified configuration. So, if you need to be in the CAPP 
certified configuration, don't let users do this.

-Steve




More information about the fedora-devel-list mailing list