> I don't remember seeing it discussed. Fetching as a non-privileged > user seems like a really good idea to me. Building as non-root would > be nice, but doesn't really buy you much security wise (and will > possibly break at least some programs that makes silly assumptions > about build as root). OK, I'll try to play with the build system and portupgrade to add such functionality. Do not promise that it will be done quickly, but someday it will. > > Note that both of these features are somewhat paranoid security > features, and the risk of getting compromised by either is much > smaller than getting compromised by some other much more simple > vulnerability. Sure. As much in the security field this is paranoid. Happy New Year! -- rea BOFH excuse #147: Party-bug in the Aloha protocolReceived on Fri Dec 30 2005 - 09:35:14 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:50 UTC