Re: NACK NACK! [PATCH] Add two new fourcc codes for 16bpp formats
- Date: Tue, 5 Feb 2008 12:01:02 -0200
- From: Mauro Carvalho Chehab <mchehab@xxxxxxxxxxxxx>
- Subject: Re: NACK NACK! [PATCH] Add two new fourcc codes for 16bpp formats
On Tue, 05 Feb 2008 08:23:28 -0500
Michael Krufky <mkrufky@xxxxxxxxxxx> wrote:
> Brandon Philips wrote:
> > - mailimport changes in this commit too! Why is mailimport running
> > sudo!?!
>
> I understand that unrelated changes were accidentally merged with a single commit, but why would we want this script to call sudo in the first place?
>
> I think it's bad practice, for such a script to execute commands as root --
>
> Can you explain, Mauro?
The script itself doesn't open any new vulnerabilities. Sudo only works if
configured at /etc/sudoers.
This is needed for the script to work on certain configurations.
Some emailers marks mailboxes and messages with "og-rw" permissions.
This means that other users can't access. If someone uses a different user
account for V4L/DVB development/testing, permissions should be changed, when
applying a patch series received by email.
Of course, this will only work if:
1) the user of the second account has sudo rights;
2) the user of the second account types his password (or, otherwise, sudo is
configured to not ask for passwords - on very weak environments).
Cheers,
Mauro
--
video4linux-list mailing list
Unsubscribe mailto:video4linux-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/video4linux-list