Package: apt-dater-host
Version: 0.8.4-1
Severity: normal

apt-dater-host uses sudo without the need for it when doing "aptitude -v
-y -q -s -f upgrade". in line 192, it prefixes the command with GETROOT,
although aptitude -s does not need root privileges.

this is a problem if one has a very restrictive sudo setup (eg allows
passwordless sudo only for "aptitude update", which is necessary for
apt-dater to refresh correctly, but not for other commands). when the
GETROOT prefix is removed, refresh works with minimal privileges.

i didn't try with DPKGTOOL=apt-get, but i assume the situation is
similar.


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.34-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages apt-dater-host depends on:
ii  debconf [debconf-2.0]         1.5.35     Debian configuration management sy
ii  libapt-pkg-perl               0.1.24+b1  Perl interface to libapt-pkg
ii  lsb-release                   3.2-23.1   Linux Standard Base version report
ii  openssh-server                1:5.6p1-1  secure shell (SSH) server, for sec
ii  sudo                          1.7.4p4-2  Provide limited super user privile

Versions of packages apt-dater-host recommends:
ii  aptitude                      0.6.3-3.1  terminal-based package manager (te
pn  imvirt                        <none>     (no description available)

apt-dater-host suggests no packages.

-- debconf information:
  apt-dater-host/assume_yes: 1

-- debsums errors found:
debsums: missing file /usr/bin/apt-dater-host.distrib (from apt-dater-host 
package)

-- 
To use raw power is to make yourself infinitely vulnerable to greater powers.
  -- Bene Gesserit axiom

Attachment: signature.asc
Description: Digital signature

Reply via email to