11.2.0 development build 14 released

Martin Langhoff martin.langhoff at gmail.com
Tue Mar 22 09:08:57 EDT 2011

On Tue, Mar 22, 2011 at 5:19 AM, Peter Robinson <pbrobinson at gmail.com> wrote:
> Why can't you give rsync the appropriate capabilities

That would be "read any file, even those owned by root and only
root-readable". If we do that. we allow an un-privileged rsync to
literally read any file in the fs. You only need to spot a trivial bug
in rsync or our rsync configuration to say hi to /etc/shadow and
/home/*/.ssh/id_rsa :-)


 martin.langhoff at gmail.com
 martin at laptop.org -- Software Architect - OLPC
 - ask interesting questions
 - don't get distracted with shiny stuff  - working code first
 - http://wiki.laptop.org/go/User:Martinlanghoff

More information about the Devel mailing list