Case number 2. --- On Wed, 7/23/08, Thierry Carrez <[EMAIL PROTECTED]> wrote: From: Thierry Carrez <[EMAIL PROTECTED]> Subject: [Bug 241461] Re: OpenVPN deletes its own user group in Hardy. To: [EMAIL PROTECTED] Date: Wednesday, July 23, 2008, 11:43 AM
I entirely agree. However the "is" and "should be" situations aren't the same: 1/ openvpn runs as root when installed, and if you change it later to run as "openvpn", whenever you upgrade you're back to root. openvpn should be running as the user 'openvpn' for security reasons. 2/ openvpn is configured to run as openvpn user out-of-the-box in Gutsy, and when you upgrade to hardy it runs as root. If you're experiencing (1), then this bug is a wishlist bug that openvpn should be installed in Ubuntu to run as an "openvpn" user rather than the root user. If you're experiencing (2), then this bug is a security regression from previous behavior, but my testing so far has failed to reproduce that. Could you confirm that you're in the (1) case, so that I can triage the bug accordingly. -- OpenVPN deletes its own user group in Hardy. https://bugs.launchpad.net/bugs/241461 You received this bug notification because you are a direct subscriber of the bug. -- OpenVPN deletes its own user group in Hardy. https://bugs.launchpad.net/bugs/241461 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
