Debian Bug report logs -
#251058
Consider using setgid(at-group) rather than setuid(root)
Reported by: Matt Zimmerman <mdz@debian.org>
Date: Wed, 26 May 2004 17:03:01 UTC
Severity: wishlist
Tags: patch
Merged with 295816
Found in version 3.1.8-11
Fixed in version at/3.1.9
Done: Ryan Murray <rmurray@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Ryan Murray <rmurray@debian.org>:
Bug#251058; Package at.
(full text, mbox, link).
Acknowledgement sent to Matt Zimmerman <mdz@debian.org>:
New Bug report received and forwarded. Copy sent to Ryan Murray <rmurray@debian.org>.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: at
Version: 3.1.8-11
Severity: wishlist
Debian's crontab was recently modified to run setgid crontab rather than
setuid root. Since at's needs are substantially similar, it could probably
work the same way, and one less setuid-root program in base would be a good
thing.
-- System Information:
Debian Release: unstable
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.5-deb4-skas-mppe1
Locale: LANG=en_US, LC_CTYPE=en_US
Versions of packages at depends on:
ii exim4-daemon-light [mail-tr 4.34-1 Lightweight version of the Exim (v
ii libc6 2.3.2.ds1-12 GNU C Library: Shared libraries an
-- no debconf information
--
- mdz
Tags added: pending
Request was from Ryan Murray <rmurray@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Reply sent to Ryan Murray <rmurray@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Matt Zimmerman <mdz@debian.org>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #14 received at 251058-close@bugs.debian.org (full text, mbox, reply):
Source: at
Source-Version: 3.1.9
We believe that the bug you reported is fixed in the latest version of
at, which is due to be installed in the Debian FTP archive:
at_3.1.9.dsc
to pool/main/a/at/at_3.1.9.dsc
at_3.1.9.tar.gz
to pool/main/a/at/at_3.1.9.tar.gz
at_3.1.9_i386.deb
to pool/main/a/at/at_3.1.9_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 251058@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ryan Murray <rmurray@debian.org> (supplier of updated at package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 2 Aug 2005 02:34:45 -0700
Source: at
Binary: at
Architecture: source i386
Version: 3.1.9
Distribution: unstable
Urgency: low
Maintainer: Ryan Murray <rmurray@debian.org>
Changed-By: Ryan Murray <rmurray@debian.org>
Description:
at - Delayed job execution and batch processing
Closes: 13603 17561 53586 61604 68364 70928 70988 79650 84351 84791 130023 133812 142810 153700 162677 173635 175211 193396 194674 200627 202617 205523 220336 239394 251058 257074 269440
Changes:
at (3.1.9) unstable; urgency=low
.
* Apply rewritten parser patch (closes: #70928)
* Several changes to be more SUSv3 compliant (closes: #133812)
* Remove yacc/flex generated files, and remove them in the clean target
* Remove /usr/doc handling from scripts (closes :#261467)
* use chown with : instead of . (closes: #205523)
* Add two precisions to format strings (closes: #220336)
* Fix manpage typos (closes: #153700, #175211)
* Use --retry option of start-stop-daemon (closes: #84351)
* Create /var/spool/cron/atjobs/.SEQ in the postinst (closes: #142810)
* Always rescan the queue after signals (closes: #194674)
* use 89 11 as parameters to update-rc.d defaults (closes: #200627)
* hold privs longer when creating pid file (closes: #13603)
* Add stdio.h for stderr to parsetime.y (closes: #130023)
* Use invoke-rc.d in maintainer scripts (closes: #162677)
* Allow usernames > 8 characters. Don't write out usernames with at that
atd will later call corrupt (closes: #17561)
* Run as user daemon, rather than root (from 3.1.8-11ubuntu3) (closes: #251058)
+ Derooted /usr/bin/at.
+ at.c:
- Keep real uid, only switch to daemon gid when unlinking files (the
directory is daemon-group writeable, but the job files are owned by user).
- Instead of creating the job file and then fchown()'ing it (which does
not work when running as non-root), change to the real gid when
creating the file.
+ atd.c:
- Don't check that the file gid is equal to the execution gid (since job
files are now always owned by "daemon".
- setgid() to the user's gid, not to the file gid for job execution.
+ debian/rules:
- Install /usr/bin/at as daemon:daemon 6555 instead of root:root 4755
(running as user daemon is necessary to be allowed to send a signal to
atd.)
- Install /etc/at.deny as root:daemon 640 instead of root:root 0600.
+ debian/postinst:
- Make /var/spool/cron/{atjobs,atspool} writeable for group "daemon".
- Update permissions of /etc/at.{allow,deny} if we upgrade from a previous
version and there is no statoverride for these files.
* Update standards version (closes: #239394)
* Increment tm_mday for at "time" case, rather than hardcoded increment of
a day in seconds. (closes: #61604)
* Print usage on "at -c" (closes: #202617)
* Increment tm_year when the month and day are earlier than current
(closes: #79650)
* Drop ISO timeformat; following SUSv3 instead (closes: #53586)
* Add optional PAM support based on the submitted patch (closes: #68364)
* Use AC_FUNC_GETLOADAVG and getloadavg.c from XEmacs, so that the
system function is used first, then the getloadavg.c from at if it isn't
available (closes: #269440)
* Fix permissions of /var/spool/cron/at* in the deb files to match what is
used now
* Remove /usr/sbin/atrun; the packaging is set up for running as a daemon.
* Align batch(1) with SUSv3 by accepting no arguments (closes: #70988)
* Update description of -v option to clarify that it prints the time
before the job submission starts (closes: #257074)
* Update description of submission to uppercase queues (closes: #84791)
* Update atq format description (closes: #193396)
* Return EXIT_FAILURE if one jobid fails for -c and -r (closes: #173635)
Files:
d1df85e6898471736141ccb54fb7ddc6 501 admin important at_3.1.9.dsc
795f1d7ba2f77c5d85ec3e5abe6da46c 97949 admin important at_3.1.9.tar.gz
3b015ac30f98e55cb9a3972329a12445 41522 admin important at_3.1.9_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFC7z94N2Dbz/1mRasRAmz/AJ9U4XzfhawSEJhew/1nZPVxClVBYACfUsNn
+98uyJlwah5ywRystSzuOlU=
=E7Hk
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 24 Jun 2007 17:20:54 GMT) (full text, mbox, link).
Bug unarchived.
Request was from Stefano Zacchiroli <zack@debian.org>
to control@bugs.debian.org.
(Sun, 10 Apr 2011 08:43:14 GMT) (full text, mbox, link).
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Mon, 09 May 2011 07:34:24 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Oct 11 12:07:05 2017;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.