[PD-dev] DesireData's ./configure
Hans-Christoph Steiner
hans at eds.org
Wed Nov 22 22:43:25 CET 2006
On Nov 22, 2006, at 3:37 PM, Frank Barknecht wrote:
> Hallo,
> Mathieu Bouchard hat gesagt: // Mathieu Bouchard wrote:
>
>> * I removed the setuid feature because Pd isn't a proper setuid
>> app, as
>> it doesn't make any checks to prevent the user from abusing the
>> access
>> it gets. I don't see why anyone should use this feature. Login
>> as root
>> if you want to login as root.
>
> Good idea: I would even suggest that this feature is dropped from
> Miller's Pd as well (on Linux at least, I don't know other OSses
> anymore) as there now are much better mechanisms to alleviate priority
> than running as root, especially the PAM-rtlimits approach. I don't
> run a setuid-root Pd binary for months now.
Yes, sounds like its time to ditch this.
> However I have believed that Pd *does* drop root priviledges after it
> has changed its priority. Have I been fooled?
When I last checked, it stayed running as root on GNU/Linux.
.hc
------------------------------------------------------------------------
Man has survived hitherto because he was too ignorant to know how to
realize his wishes. Now that he can realize them, he must either
change them, or perish. -William Carlos Williams
More information about the Pd-dev
mailing list