You are not logged in.
- Topics: Active | Unanswered
#1 2005-06-30 16:22:42
- denon
- Member
- Registered: 2005-05-31
- Posts: 4
default uid and gid for pacman database
Hello,
When pacman synchronises its database it assigns the default UID and GID of /var/lib/pacman/current/<packages> to 1000 and 100 (users group), and /var/lib/pacman/extran<packages> to 1004 or 534 and 100 (users group).
All files in both current and extra have write permissions for the user.
Numbers >= 1000 are used by default as UIDs when adding new users to the system and these users are also placed by default to group users (GID 100).
For example, if after I install arch create a new user test, its uid will be 1000. As a result the /var/lib/pacman/current/<packages> will belong to user test (UID 1000). Eventhough, the user can not modify any of the files.
I am wondering why the files in both current and extra are not assigned to user and group root. Could this be a security risk?
Offline
#2 2005-06-30 22:31:46
- apeiro
- Daddy
- From: Victoria, BC, Canada
- Registered: 2002-08-12
- Posts: 771
- Website
Re: default uid and gid for pacman database
Thanks for bringing this up. I've fixed the db files on the main server, and they should propagate to the mirrors soon.
Offline