#8814 HIGH 9.1.0-c: WikipediaEN Activity does not work on secure machines with 767
Zarro Boogs per Child
bugtracker at laptop.org
Fri Jan 15 13:41:13 EST 2010
#8814: WikipediaEN Activity does not work on secure machines with 767
-------------------------------------------+--------------------------------
Reporter: frances | Owner: cjb
Type: defect | Status: new
Priority: high | Milestone: 9.1.0-cancelled
Component: wikibrowse-activity | Version: not specified
Resolution: | Keywords: cjbfor9.1.0
Next_action: diagnose | Verified: 0
Deployment_affected: | Blockedby:
Blocking: |
-------------------------------------------+--------------------------------
Comment(by martin.langhoff):
I think that the least risky approach is to leave Rainbow alone, and add
an appropriate permissions.info file. This will fix things for fresh
installs -- after all, the dialog (and lost functionality) are a minor
annoyance, not a showstopper.
Along the way, I tried a patch for the Wikipedia activity to scan its
datadir and chown or chmod anything found there that is not owned by
itself. This does not work because even if you have g+rwx in the dir, you
cannot chown a file or dir to yourself.
Not sure how newer versions of Rainbow handle this ownership issue, but
any program that saves its state in 644 or 600 files (and many do for good
reasons) will consistently run afoul of Rainbow. I do think that Rainbow
should carefully chown everything in data.
I also considered changing Rainbow so that in the case of a "new constant-
uid", it scans for uid ownership to try to match the "original" uid. This
is not feasible however: the data dir may contain any number of uids,
collected over the course of many invocations.
--
Ticket URL: <http://dev.laptop.org/ticket/8814#comment:22>
One Laptop Per Child <http://laptop.org/>
OLPC bug tracking system
More information about the Bugs
mailing list