Ensure proper permission handling when overshadowing unix user/group names, and groups with _
#51
Labels
No Label
art
big
blocked
bug
ci-cd
crash report
disputed
documentation
duplicate
feature request
good first issue
packaging
question
security
techdebt spring cleaning
testing
wontfix
No Milestone
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: Projects/mysqladm-rs#51
Loading…
Reference in New Issue
Block a user
No description provided.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Take the following case: On the system there are 2 users
usera
anduserb
.usera
is part ofgroup1
, anduserb
is part ofgroup1_2
.In the current implementation,
usera
would be able to create a databasegroup1_2_asdf
, even though they are not part ofgroup1_2
, and I'm not even sure what the logic is foruserb
, considering the names are split on_
. Should we just outright ban groups with_
?Relevant piece of code:
This turned out to be somewhat nontrivial, due to libc not having any good way to fetch all groups.
getent(1)
is probably the best option, but it requires us to do external command calls and validate whether that tool is available. Leaving for another release.