Open GoogleCodeExporter opened 8 years ago
I'm more than happy to try and write a patch to fix this, but I'd prefer some
confirmation that my proposed
solution is acceptable before I dive too far into code.
Original comment by evan.broder@gmail.com
on 1 Feb 2010 at 10:06
I think that the concern is valid. I wonder if we can make a simple requirement
that completely dropping privileges requires that an SSH login be used instead
of LOGIN. It should be simple enough to make a switch, say,
--no-root-privileges, that requires an SSH service. If the user asks for LOGIN
it won't run. In this way, it is explicitly privilege free and the user knows
it.
OK?
Comments and/or a patch welcome.
Original comment by beewoo...@gmail.com
on 31 Mar 2012 at 7:37
That sounds reasonable. It'll make documentation a little more difficult. But
it shouldn't confuse the manual page too much.
Original comment by zod...@gmail.com
on 31 Mar 2012 at 8:24
Original issue reported on code.google.com by
evan.broder@gmail.com
on 1 Feb 2010 at 10:06