[pacman-dev] Security vuln. in makepkg?

David Manouchehri david at davidmanouchehri.com
Sun Sep 6 13:40:39 UTC 2015

On Sun, Sep 6, 2015 at 6:02 AM, Mohammad_AlSaleh
<ce.mohammad.alsaleh at gmail.com> wrote:
> It think it would be useful if pacman warned against packages
> containing setuid/setgid binaries.

That might add too much noise, and I don't see any difference from a
security standpoint.

If you want to build in a container and avoid modifying the system,
using unionfs-fuse with proot (no root needed) or aufs with chroot
would probably do the trick.

More information about the pacman-dev mailing list