Case number 2.

--- On Wed, 7/23/08, Thierry Carrez <[EMAIL PROTECTED]> wrote:
From: Thierry Carrez <[EMAIL PROTECTED]>
Subject: [Bug 241461] Re: OpenVPN deletes its own user group in Hardy.
To: [EMAIL PROTECTED]
Date: Wednesday, July 23, 2008, 11:43 AM

I entirely agree. However the "is" and "should be"
situations aren't the
same:

1/ openvpn runs as root when installed, and if you change it later to
run as "openvpn", whenever you upgrade you're back to root.
openvpn
should be running as the user 'openvpn' for security reasons.

2/ openvpn is configured to run as openvpn user out-of-the-box in Gutsy,
and when you upgrade to hardy it runs as root.

If you're experiencing (1), then this bug is a wishlist bug that openvpn
should be installed in Ubuntu to run as an "openvpn" user rather than
the root user.

If you're experiencing (2), then this bug is a security regression from
previous behavior, but my testing so far has failed to reproduce that.

Could you confirm that you're in the (1) case, so that I can triage the
bug accordingly.

-- 
OpenVPN deletes its own user group in Hardy.
https://bugs.launchpad.net/bugs/241461
You received this bug notification because you are a direct subscriber
of the bug.

-- 
OpenVPN deletes its own user group in Hardy.
https://bugs.launchpad.net/bugs/241461
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to