[PATCH] Hal privilige seperation
John (J5) Palmieri
johnp at redhat.com
Fri Jan 20 14:33:38 PST 2006
On Fri, 2006-01-20 at 10:33 -0800, Artem Kachitchkine wrote:
> > + g_child_watch_add(pid, runner_died, NULL);
> ...
> > +static void
> > +runner_died(GPid pid, gint status, gpointer data) {
> > + g_spawn_close_pid (pid);
> > + DIE (("Runner died"));
> > +}
>
> Is the death hald-runner fatal to hald? Could hald recover by restarting it?
I would rather it die and someone file a bug. Right now HAL provides
conveniences and is not essential to the running of a system. If we are
crashing as a root process but the user never notices it, it could be a
vector for attack that doesn't get fixed. If anything at least make it
so this could be turned on and off with a compile switch so if it is
being released as a beta it can be switched off.
--
John (J5) Palmieri <johnp at redhat.com>
More information about the hal
mailing list