<div dir="ltr"><div><div><span class="gmail-il">Hi,<br><br>Who here is communicating with Pat</span> <span class="gmail-il">McEvoy</span>?<br><br></div>Thanks.<br></div><div>William - manager<br></div><div>w: <a href="http://traderbrokerage.com">traderbrokerage.com</a><br></div><div><div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Apr 3, 2018 at 12:00 PM,  <span dir="ltr"><<a href="mailto:talk-request@lists.nycbug.org" target="_blank">talk-request@lists.nycbug.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Send talk mailing list submissions to<br>
        <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
<br>
To subscribe or unsubscribe via the World Wide Web, visit<br>
        <a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
or, via email, send a message with subject or body 'help' to<br>
        <a href="mailto:talk-request@lists.nycbug.org">talk-request@lists.nycbug.org</a><br>
<br>
You can reach the person managing the list at<br>
        <a href="mailto:talk-owner@lists.nycbug.org">talk-owner@lists.nycbug.org</a><br>
<br>
When replying, please edit your Subject line so it is more specific<br>
than "Re: Contents of talk digest..."<br>
<br>
<br>
Today's Topics:<br>
<br>
   1. Re: Using separate users for different programs (Pat McEvoy)<br>
   2. Re: Using separate users for different programs (Matthew Story)<br>
   3. Re: Using separate users for different programs (Thomas Levine)<br>
<br>
<br>
------------------------------<wbr>------------------------------<wbr>----------<br>
<br>
Message: 1<br>
Date: Tue, 3 Apr 2018 10:29:57 -0400<br>
From: Pat McEvoy <<a href="mailto:mcevoy.pat@gmail.com">mcevoy.pat@gmail.com</a>><br>
To: Thomas Levine <_@<a href="http://thomaslevine.com" rel="noreferrer" target="_blank">thomaslevine.com</a>><br>
Cc: <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
Subject: Re: [talk] Using separate users for different programs<br>
Message-ID: <<a href="mailto:D0FEB3DA-E65E-430A-A6EB-C05195FD4255@gmail.com">D0FEB3DA-E65E-430A-A6EB-<wbr>C05195FD4255@gmail.com</a>><br>
Content-Type: text/plain;       charset=us-ascii<br>
<br>
<br>
<br>
<br>
> On Mar 30, 2018, at 4:05 PM, Thomas Levine <_@<a href="http://thomaslevine.com" rel="noreferrer" target="_blank">thomaslevine.com</a>> wrote:<br>
> <br>
> Thomas Levine writes:<br>
>> Thomas Levine writes:<br>
>>> Then I suppose I will write my own.<br>
>>> Maybe I'll report in a few months if I wind up using it.<br>
>>> <a href="https://thomaslevine.com/scm/subdo" rel="noreferrer" target="_blank">https://thomaslevine.com/scm/<wbr>subdo</a><br>
>> <br>
>> I surprisingly find myself using it after just a few days. I hav<br>
>> e<br>
>> already ported the most worrysome of the softwares that I use of<br>
>> ten,<br>
>> and the ports have all been very short.<br>
>> <br>
>> I see no future talks scheduled; would anyone like to hear about<br>
>> this<br>
>> in April?<br>
> <br>
> Since we still don't have an April meeting, I reiterate my proposal<br>
> to discuss my privilege separation methodology.<br>
> <br>
> ______________________________<wbr>_________________<br>
> talk mailing list<br>
> <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
> <a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
<br>
Re: meeting:<br>
I have some streaming stuff I would like to practice with so I am game. If we are doing our customary first Wednesday I would need to know by this evening so I have all the gear with me tomorrow.  Hope everyone is well. <br>
P<br>
<br>
<br>
------------------------------<br>
<br>
Message: 2<br>
Date: Tue, 3 Apr 2018 11:37:17 -0400<br>
From: Matthew Story <<a href="mailto:matthewstory@gmail.com">matthewstory@gmail.com</a>><br>
To: Thomas Levine <_@<a href="http://thomaslevine.com" rel="noreferrer" target="_blank">thomaslevine.com</a>><br>
Cc: talk <<a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a>><br>
Subject: Re: [talk] Using separate users for different programs<br>
Message-ID:<br>
        <CAB+9ogcOZZFSwErnmcex=<a href="mailto:QeCzvf9iLT4qAmjgN7vGPWA8rEnOg@mail.gmail.com">QeCzvf9<wbr>iLT4qAmjgN7vGPWA8rEnOg@mail.<wbr>gmail.com</a>><br>
Content-Type: text/plain; charset="utf-8"<br>
<br>
On Sat, Feb 24, 2018 at 12:18 AM, Thomas Levine <_@<a href="http://thomaslevine.com" rel="noreferrer" target="_blank">thomaslevine.com</a>> wrote:<br>
<br>
> Then I suppose I will write my own.<br>
> Maybe I'll report in a few months if I wind up using it.<br>
> <a href="https://thomaslevine.com/scm/subdo" rel="noreferrer" target="_blank">https://thomaslevine.com/scm/<wbr>subdo</a><br>
><br>
> ______________________________<wbr>_________________<br>
> talk mailing list<br>
> <a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
> <a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
><br>
<br>
<br>
Isn't it simpler to just install to a user-specific hier and then use the<br>
setuid bit on the binary and set the owner to the de-escalated owner?<br>
<br>
-- <br>
regards,<br>
matt<br>
-------------- next part --------------<br>
An HTML attachment was scrubbed...<br>
URL: <<a href="http://lists.nycbug.org/pipermail/talk/attachments/20180403/a8a3ddbf/attachment-0001.html" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>pipermail/talk/attachments/<wbr>20180403/a8a3ddbf/attachment-<wbr>0001.html</a>><br>
<br>
------------------------------<br>
<br>
Message: 3<br>
Date: Tue, 03 Apr 2018 15:45:18 +0000<br>
From: Thomas Levine <_@<a href="http://thomaslevine.com" rel="noreferrer" target="_blank">thomaslevine.com</a>><br>
To: Matthew Story <<a href="mailto:matthewstory@gmail.com">matthewstory@gmail.com</a>><br>
Cc: talk <<a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a>><br>
Subject: Re: [talk] Using separate users for different programs<br>
Message-ID: <20180403154519.3EE46E50A1@<wbr>mailuser.nyi.internal><br>
Content-Type: text/plain; charset="us-ascii"<br>
<br>
Perhaps I should note that this would be an awefully short presentation<br>
that would likely move quickly to discussion; I just presented it at<br>
LibrePlanet and managed to fill only like one or two of my allotted<br>
five minutes. The discussion is entirely the reason why I want<br>
to present it, as I still don't understand why I have not seen something<br>
like subdo before.<br>
<br>
Matthew Story writes:<br>
> Isn't it simpler to just install to a user-specific hier and the<br>
> n use the<br>
> setuid bit on the binary and set the owner to the de-escalated o<br>
> wner?<br>
I thought it should be, but apparently not.<br>
I really hope that I'm missing something though.<br>
<br>
<br>
<br>
------------------------------<br>
<br>
Subject: Digest Footer<br>
<br>
______________________________<wbr>_________________<br>
talk mailing list<br>
<a href="mailto:talk@lists.nycbug.org">talk@lists.nycbug.org</a><br>
<a href="http://lists.nycbug.org/mailman/listinfo/talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/talk</a><br>
<br>
<br>
------------------------------<br>
<br>
End of talk Digest, Vol 171, Issue 1<br>
******************************<wbr>******<br>
</blockquote></div><br></div></div></div></div>