Scripsit Russell Coker <[EMAIL PROTECTED]> > Maybe we should have a debconf option for whether the program in question is > to be SETUID root or SETGID shadow? Then the minority of people who use NIS > can have full functionality, while the majority of people who don't use NIS > can have better security.
Would it be feasible to have the program be suid root, but start by trying to parse /etc/nsswitch.conf and drop root privileges immediately unless it finds NIS for passwd/shadow? -- Henning Makholm "Vend dig ikke om! Det er et meget ubehageligt syn!"
