sawolf
commented
6 months ago Thanks for the patch! This looks good to me.
Closed orlitzky closed 1 month ago
sawolf
commented
6 months ago Thanks for the patch! This looks good to me.
orlitzky
commented
6 months ago Thanks! I thought I had fixed this in nagios-core, too, but now that I look back the issue sort of stalled: https://github.com/NagiosEnterprises/nagioscore/issues/424
Installing executables as
nagios:nagios(the default) is a security issue on a typical system where those executables will wind up in everyone'sPATH. In these two commits I simply delete the special handling, letting all executables be installed mode 755 with the owner unchanged. (This would result inroot:rootownership for a "normal"/usr/bininstall.)