Re: Permissions - John Goerzen

public inbox for nncp-devel@lists.stargrave.org
Atom feed

From: John Goerzen <jgoerzen@complete•org>
To: Hadmut Danisch <hadmut@danisch•de>
Cc: nncp-devel@lists.cypherpunks.su
Subject: Re: Permissions
Date: Wed, 11 Mar 2026 11:48:29 -0500	[thread overview]
Message-ID: <87h5qm48iq.fsf@complete.org> (raw)
In-Reply-To: <2f7858d1-bafc-4e53-b7a1-370e041cd998@danisch.de> (Hadmut Danisch's message of "Wed, 11 Mar 2026 17:35:53 +0100")

On Wed, Mar 11 2026, Hadmut Danisch wrote:

> What about writing nncp so that it deals properly with the task and has none of
> the drawbacks?

I'm not the author of nncp, but from my perspective it already pretty
much is, modulo a couple of minor tweaks you pointed out.

I mean, what do you propose?

setuid/setgid brings along a whole host of problems.  Now any user on
the system can invoke the tool.  There are very few setuid/setgid
programs anymore on a modern system, and for good reason.  On my system,
which has a fair amount of software installed, the setuid ones all seem
to have system functions (passwd, mount, etc).  The only other one is
procmail, and that has to do with writing into user directories from
MTAs that aren't capable of running it as the user, I suppose.

I think it's a good thing that we have more modern design patterns now.

You can already set it up as a central daemon on the system where
individual users connect to if you want, and I've documented how to do
that also.  There's nothing stopping you from running a separate nncp
for email, another for backups, etc. and they all just transfer files to
the central daemon running as nncp.

- John

next prev parent reply	other threads:[~2026-03-11 16:49 UTC|newest]

Thread overview: 11+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2026-03-10 23:28 What is /hdr/ subdirectory? Hadmut Danisch
2026-03-11  2:50 ` John Goerzen
2026-03-11 11:51   ` Permissions (Was: What is /hdr/ subdirectory?) Hadmut Danisch
2026-03-11 12:08     ` Permissions John Goerzen
2026-03-11 12:32       ` Permissions Hadmut Danisch
2026-03-11 16:27         ` Permissions John Goerzen
2026-03-11 16:35           ` Permissions Hadmut Danisch
2026-03-11 16:48             ` John Goerzen [this message]
2026-03-11 16:30         ` Permissions John Goerzen
2026-03-15  8:17         ` Permissions Sergey Matveev
2026-03-11  7:36 ` What is /hdr/ subdirectory? Sergey Matveev