me
/
guix
Archived
1
0
Fork 0
Code

doc: Use a better setuid example. 

nmtui does not benefit from being setuid.  Oops.

* doc/guix.texi (Setuid Programs): Replace network-manager's /bin/nmtui
with nfs-utils' /sbin/mount.nfs.  Change a @code{} to a @command{}.
master
Tobias Geerinckx-Rice 2022-01-07 18:27:56 +01:00
parent 33e62872bb
commit 2dfbd03a60
No known key found for this signature in database
GPG Key ID: 0DB0FF884F556D79
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
doc/guix.texi
View File

@ -50,7 +50,7 @@ Copyright @copyright{} 2017, 2021 Christine Lemmer-Webber@*
Copyright @copyright{} 2017, 2018, 2019, 2020, 2021 Marius Bakke@*
Copyright @copyright{} 2017, 2019, 2020 Hartmut Goebel@*
Copyright @copyright{} 2017, 2019, 2020, 2021 Maxim Cournoyer@*
Copyright @copyright{} 2017, 2018, 2019, 2020, 2021 Tobias Geerinckx-Rice@*
Copyright @copyright{} 20172022 Tobias Geerinckx-Rice@*
Copyright @copyright{} 2017 George Clemmer@*
Copyright @copyright{} 2017 Andy Wingo@*
Copyright @copyright{} 2017, 2018, 2019, 2020 Arun Isaac@*
@ -34077,23 +34077,23 @@ should be setuid root.
The @code{setuid-programs} field of an @code{operating-system}
declaration contains a list of @code{<setuid-program>} denoting the
names of programs to have a setuid or setgid bit set (@pxref{Using the
Configuration System}). For instance, the @command{nmtui} program,
which is part of the NetworkManager package, with a setuid root can be
Configuration System}). For instance, the @command{mount.nfs} program,
which is part of the nfs-utils package, with a setuid root can be
designated like this:
@example
(setuid-program
(program (file-append network-manager "/bin/nmtui")))
(program (file-append nfs-utils "/sbin/mount.nfs")))
@end example
And then, to make @code{nmtui} setuid on your system, add the previous
example to your operating system declaration by appending it to
And then, to make @command{mount.nfs} setuid on your system, add the
previous example to your operating system declaration by appending it to
@code{%setuid-programs} like this:
@example
(setuid-programs
(append (list (setuid-program
(program (file-append network-manager "/bin/nmtui"))))
(program (file-append nfs-utils "/sbin/mount.nfs"))))
%setuid-programs))
@end example