Bug 71691
Summary: | traceroute should start as user root | ||
---|---|---|---|
Product: | [Retired] Red Hat Public Beta | Reporter: | Taco Witte <info> |
Component: | mtr | Assignee: | Phil Knirsch <pknirsch> |
Status: | CLOSED RAWHIDE | QA Contact: | Mike McLean <mikem> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | limbo | CC: | pekkas, rvokal |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2002-08-19 11:41:17 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Taco Witte
2002-08-16 18:44:40 UTC
Umm, isn't this an mtr problem? Changing component. Anyway, running a program as root is much worse IMO than setting it setuid. If setuid doesn't work, it should be fixed. I agree that setuid is safer than running things as root, but in this case it's better. This is the result of running xmtr as normal user, with the executable set as setuid: ----------------------------------- Gtk-WARNING **: This process is currently running setuid or setgid. This is not a supported use of GTK+. You must create a helper program instead. For further details, see: http://www.gtk.org/setuid.html Refusing to initialize GTK+. ------------------------------------ I think it's simply a little mistake that it doesn't ask for the root password, like configuration programs do. Mtr has as history for exploits, thats why is has never been setuid in our distribution and why will stay like that. Anyone is free to setuid the binary himself, but we can't and won't do it by default in our distribution. A general rule for our distro is to have as little setuid binaries as possible, and mtr just doesn't meet the code quality required to be setuid. What i thought we already had done was to make xmtr consolehelper aware, but from what i see it doesn't look like it. I'll fix that, that should be the best of both worlds and thats what we generally do for x11 apps that require root privileges. Read ya, Phil Thanks OK, fixed in latest rawhide version mtr-0.49-7 Read ya, Phil |