[Nix-dev] Re: Irritating warnings for non existing security.setuidPrograms
Michael Raskin
7c6f434c at mail.ru
Thu Oct 30 10:15:58 CET 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Ludovic Courtès wrote:
> Anyway, it should certainly be improved to be detected at
> `nixos-rebuild'-time, but I'm not sure how.
Maybe a good way would be for each package to define setuidPrograms it
would like to install, and then we could have extraSetuidPrograms for
rare situations, and setuidPackages/extraSetuidPackages to install a
program and setuid-wrap requested components.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iQEcBAEBAgAGBQJJCXtLAAoJEE6tnN0aWvw3vGAIALEhHgrVwyqt70qZU1SUXplh
dZxGpsdBk/5L8nMiAz9rEGtcrDGshYCdhXrj3ARs1lTa9qvpsTTFdCI2d1r1317c
LdsdWRIQZhWKYhDAlUsTDLTdhJC6FvOJ1Xvgb+cEUKHJ/pNA302jSq7mkSnYk2NU
dp7tzqnlkbGtLl3CXCdQ7iG6FB9wnS2+xmcWLtxSNaMrKuxiyJ1gyM4vpggd55sr
uOeUuTfJI5+sLS90uJWXl/JvPVOpUIUesUCqeha3OlDrSsaleXBu7BV9LGkoUNtj
7Y3iIxJ/HCSV0LQlKR+c60lRo+iILycCEmDu2ftu+DMZYM45ny5mu0yFf75yfdI=
=RPMH
-----END PGP SIGNATURE-----
More information about the nix-dev
mailing list