running speech-dispatcher as non-root using setuid on XO and accompanying security issues

Michael Stone michael at laptop.org
Thu Jul 17 13:27:03 EDT 2008


On Thu, Jul 17, 2008 at 05:21:57PM +0530, Hemant Goyal wrote:

>The corresponding strace outputs are :
>open("/var/log//speechd.log", O_WRONLY|O_CREAT|O_APPEND, 0666) = -1 EACCES (Permission denied)
>open("/var/log//espeak.log", O_WRONLY|O_CREAT|O_TRUNC, 0600) = -1 EACCES (Permission denied)

Your software is attempting to create-or-truncate its pid-file and
log-files and is failing. If you make these files world-writable (or at
least speechd writable) by, e.g., 

   touch /var/run/speech-dispatcher.pid
   chmod a+w /var/run/speech-dispatcher.pid 

   ... (repeat for speechd.log and espeak.log)

What happens when you redo your tests?

Michael

P.S. - In the long run, speechd should probably learn to run under its
own uid(s). Then the appropriate uids can own the appropriate log files.


More information about the Devel mailing list