:: [DNG] Security problem
トップ ページ
このメッセージを削除
このメッセージに返信
著者: J. Fahrner
日付:  
To: Liste, DNG
題目: [DNG] Security problem
I just came across a security problem. The application signal-desktop
could not be started anymore because a file from the electron framework
did not set a setuid bit
(https://github.com/signalapp/Signal-Desktop/issues/3536).
For the sandbox feature this obviously needs root privileges.
It creeps me out when an application from an untrusted source installs
programs with root privileges without me even noticing it.
How can I protect myself against this? Is there a way to check Debian
packages for a setuid bit set, e.g. in the post-install script?

Jochen