810 2002-04-09 23:38:41 +0400 APT: run download methods with less permissions 2020-08-19 14:02:08 +0300 1 1 4 Development Sisyphus apt unstable all Linux NEW P4 enhancement --- 1 vanyaz imz boyarsh glebfm imz ldv mike msp placeholder svd voins vt oldest_to_newest 770 0 vanyaz 2002-04-09 23:38:41 +0400 /usr/lib/apt/ftp (and others) doesn\'t need all the root\'s permissions and access to the whole filesystem to do its job, only read access to the source (URL, CD-ROM) and write access to the cache. So running the download methods under a simple special user and (perhaps) in a chrooted environment could be a security improvement. I\'m not sure whether this would be a real important security improvement... But the download stage seems to be the only one when the APT system has to deal with untrusted environment like the Internet; after the downoad is complete, the signatures of the packages can be checked and a decision made whether to trust them. --- --- 113425 1 mike 2010-10-09 19:06:01 +0400 Seems like requisite example in stock /etc/apt/apt.conf suffices in practice. 113427 2 mike 2010-10-09 19:09:14 +0400 Ouch, missed the tab! (see #608) 143737 3 mike 2013-11-10 19:38:29 +0400 apparently wontfix 164830 4 imz 2017-07-24 16:50:34 +0300 This is about to be fixed in task #185681