Re: Support for setuid binaries

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Support for setuid binaries

From:	David Thompson
Subject:	Re: Support for setuid binaries
Date:	Wed, 30 Apr 2014 18:26:57 -0400
User-agent:	Notmuch/0.17 (http://notmuchmail.org) Emacs/24.3.1 (x86_64-pc-linux-gnu)

Ludovic Courtès <address@hidden> writes:

> Hello,
>
> Commit 09e028f adds support for setuid binaries.  Since the store cannot
> contain setuid binaries, we use the same technique as NixOS: setuid
> binaries are created when booting (or when switching configurations.)
>
> That is, for each setuid program, a hard link or a copy of the
> executable is created under /run/setuid-programs and make setuid-root.
>
> You can test it by running:
>
>   ./pre-inst-env guix system vm build-aux/hydra/demo-os.scm
>
> and running for instance ‘ping’ as guest from there.
>
> Ludo’.

That's great news!  I've been missing sudo lately.

- Dave

[Prev in Thread]

Current Thread

[Next in Thread]

Support for setuid binaries, Ludovic Courtès, 2014/04/30
- Re: Support for setuid binaries, David Thompson <=

Prev by Date: Re: [PATCH] gnu: Add libpetsc
Next by Date: Re: ‘package-derivation’ fails with “No such file or directory”
Previous by thread: Support for setuid binaries
Index(es):
- Date
- Thread