ubuntu-appstore-developers team mailing list archive

Thread
Date

Re: Click package hooks

To: ubuntu-appstore-developers@xxxxxxxxxxxxxxxxxxx
From: Jamie Strandboge <jamie@xxxxxxxxxxxxx>
Date: Mon, 15 Jul 2013 13:31:22 -0500
In-reply-to: <1373692533.6732.20.camel@localhost>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130623 Thunderbird/17.0.7

On 07/13/2013 12:15 AM, Ted Gould wrote:
> 
> There should be two types of hooks, system and user.  System hooks run as the
> click package user and are expected to do things that are system wide.  User
> hooks run as the user installing the program and are meant to set up items in
> the user's individual home directory.  (Q: Is the click package user enough for
> security?  Do system hooks need to be root?)

From a security point of view, we prefer the system click hooks to run with the
least amount of privilege at all times, which is why we recommended a
non-privileged click user. This is easy enough for things like unpacking and
maintaining things in /opt/click.ubuntu.com/, but some hooks such as the the
apparmor click hook will need to run as root for at least part of the time (eg
to load apparmor policy into the kernel).

-- 
Jamie Strandboge                 http://www.ubuntu.com/

Attachment: signature.asc
Description: OpenPGP digital signature

Follow ups

Re: Click package hooks
From: Ted Gould, 2013-07-16

References

Click package hooks
From: Ted Gould, 2013-07-13