oss-sec mailing list archives

Re: systemd fails to parse user that should run service

From: "Patrick J. Volkerding" <security () slackware com>
Date: Wed, 5 Jul 2017 17:26:47 -0500

On 07/05/2017 04:14 PM, Robert Scheck wrote:

+1 for both, the CVE and that this is a problem. The service should not be
started with more (!) permissions simply if parsing username fails.


One would think that without any User= line specified, defaulting to
nobody:nogroup would be more sane than defaulting to root. Since the
User= mechanism exists, if you want something to run as root, you should
need to ask for it.

Attachment: signature.asc
Description: OpenPGP digital signature

Current thread:

Re: systemd fails to parse user that should run service, (continued)
- - - Re: systemd fails to parse user that should run service Alan Coopersmith (Jul 05)
    - Re: systemd fails to parse user that should run service Perry E. Metzger (Jul 05)
    - Re: systemd fails to parse user that should run service Simon McVittie (Jul 05)
    - Re: systemd fails to parse user that should run service Kristian Fiskerstrand (Jul 05)
    - Re: systemd fails to parse user that should run service Jeremy Stanley (Jul 05)
    - Re: systemd fails to parse user that should run service Kristian Fiskerstrand (Jul 05)
    - Re: systemd fails to parse user that should run service Simon McVittie (Jul 05)
    - Re: systemd fails to parse user that should run service Ben Tasker (Jul 06)
    - Re: systemd fails to parse user that should run service Perry E. Metzger (Jul 05)
    - Re: systemd fails to parse user that should run service Robert Scheck (Jul 05)
    - Re: systemd fails to parse user that should run service Patrick J. Volkerding (Jul 06)
    - Re: systemd fails to parse user that should run service Simon McVittie (Jul 06)
    - Re: systemd fails to parse user that should run service Leonid Isaev (Jul 06)
    - Re: systemd fails to parse user that should run service Simon McVittie (Jul 06)
    - Re: systemd fails to parse user that should run service Leonid Isaev (Jul 06)
    - Re: systemd fails to parse user that should run service Simon McVittie (Jul 06)
    - Re: systemd fails to parse user that should run service Martin Steigerwald (Jul 06)
  - Re: systemd fails to parse user that should run service Eric Blake (Jul 05)
- Re: systemd fails to parse user that should run service Jeffrey Walton (Jul 05)
  - Re: systemd fails to parse user that should run service Martin Steigerwald (Jul 06)
- Re: systemd fails to parse user that should run service Kurt Seifried (Jul 06)