[Bug 537587] Review Request: dspam - bayesian filtering daemon, client, library and web ui
bugzilla at redhat.com
bugzilla at redhat.com
Sat Jan 9 13:12:45 UTC 2010
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
https://bugzilla.redhat.com/show_bug.cgi?id=537587
Paul Howarth <paul at city-fan.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |paul at city-fan.org
--- Comment #48 from Paul Howarth <paul at city-fan.org> 2010-01-09 08:12:42 EST ---
(In reply to comment #45)
> The user 'nobody' is not possible for a packaged daemon. Daemons should run
> unprivileged; using common accounts like 'nobody' or 'bin' or 'daemon' allows
> independent daemons (e.g. dspam and dnsmasq) to influence each other (e.g. by
> 'ptrace'). Please use a dedicated account.
And it's particularly important that files are not owned by the "nobody"
account, as these could then be overwritten by any process running with that
UID - such processes are intended to have minimal privileges and should
certainly not be able to write to any system files.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the Fedora-package-review
mailing list