[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: please test inetutils 1.9.5 rc1
|
From: |
Ludovic Courtès |
|
Subject: |
Re: please test inetutils 1.9.5 rc1 |
|
Date: |
Thu, 02 Jan 2020 12:48:16 +0100 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) |
Simon Josefsson <address@hidden> skribis:
> Simon Josefsson <address@hidden> writes:
>
>> I noticed Guix installs ping and ping6 from inetutils with the setuid
>> bit enabled. There is new support for non-setuid usage in this release,
>> however I was not able to get it to work. Comparing with iputils' ping
>> it looks like what we have might not be sufficient, but I can't tell for
>> sure.
>
> I was able to get non-root inetutils-ping to work like this:
>
> jas@latte:~/src/inetutils/ping$ sudo setcap cap_net_raw+ep ping
> jas@latte:~/src/inetutils/ping$ ./ping 192.168.1.2
> PING 192.168.1.2 (192.168.1.2): 56 data bytes
> 64 bytes from 192.168.1.2: icmp_seq=0 ttl=64 time=0,432 ms
> 64 bytes from 192.168.1.2: icmp_seq=1 ttl=64 time=0,479 ms
>
> Would this level of support allow guix to make ping/ping6 non-setuid?
Ah no. Well I guess that, in addition to the ‘setuid-programs’ field,
we could provide a more fine-grained list of programs with specific
capabilities, but that doesn’t exist yet.
Ludo’.
- please test inetutils 1.9.5 rc1, Simon Josefsson, 2020/01/01
- Re: [platform-testers] please test inetutils 1.9.5 rc1, Assaf Gordon, 2020/01/01
- Re: please test inetutils 1.9.5 rc1, Alfred M. Szmidt, 2020/01/02
- Re: inetutils 1.9.5 rc1 on musl libc, Bruno Haible, 2020/01/06
- Re: inetutils 1.9.5 rc1 on AIX, Bruno Haible, 2020/01/06
Re: inetutils 1.9.5 rc1 on Cygwin, Bruno Haible, 2020/01/06
Re: inetutils 1.9.5 rc1 on Solaris OpenIndiana, Bruno Haible, 2020/01/06