Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

pkguser also for hardened gentoo?
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
piotr5
Tux's lil' helper
Tux's lil' helper


Joined: 14 Dec 2012
Posts: 117
PostPosted: Thu May 02, 2013 7:11 pm    Post subject: pkguser also for hardened gentoo? Reply with quote
Matthias Benkmann had a strange idea: build each package not as root but as a user with the username matching the package-name. a great idea for linuxfromscratch where without a distro you have full responsibility for the system's security. during compilation and installation in the usual way the build-system gets full access to the filesystem, often overwriting files or changing permissions in installation. in gentoo this is no problem, the installation happens into a directory and not into the rootfs. another reason against pkguser is that security in the kernel goes into the direction where some programs will only execute when they are owned by root. nonetheless I think on a hardened gentoo emerge and portage shouldn't get root privilegues, who knows what worms and spy-software has been smuggled into the build-scripts or portage itself. and if such a breakage would be detected, it is impossible to figure out where it came from. additionally some filesystems don't support acl and user-privilegues might be an interesting alternative. and finally there is the question how much you trust your distro. should root actually be given to computer-programs or should it rather be a privilegue of admins only? fact is if you emerge all your packages with whatever other username, the vulneribility still is with that other user, such a user would then have access to all installed files on this computer. also interesting perspective is to restrict read-access to config-files only to the programs that require reading them. seen abstractly every open-source program installed is alike to one user (the programmer-team) getting access to your computer. would you grant root access to so many people?

https://github.com/JohnBurrell/LFS-BuildScripts for the current version.
http://www.linuxfromscratch.org/hints/downloads/files/more_control_and_pkg_man.txt the description from the author
http://wiki.linuxfromscratch.org/hints/browser/trunk/PREVIOUS_FORMAT/more_control_and_pkg_man.txt?rev=904 a version including an su-replacement.

so, what do you think? is pkguser overkill for gentoo security? you have any other solutions for the problems I pointed out? well, my favourite solution is to unmount rootfs before installation, I just am not sure how to do that... :-)
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy