[pacman-dev] Security vuln. in makepkg?
David Manouchehri
david at davidmanouchehri.com
Sun Sep 6 13:40:39 UTC 2015
On Sun, Sep 6, 2015 at 6:02 AM, Mohammad_AlSaleh
<ce.mohammad.alsaleh at gmail.com> wrote:
> It think it would be useful if pacman warned against packages
> containing setuid/setgid binaries.
That might add too much noise, and I don't see any difference from a
security standpoint.
If you want to build in a container and avoid modifying the system,
using unionfs-fuse with proot (no root needed) or aufs with chroot
would probably do the trick.
More information about the pacman-dev
mailing list