User:Aexoxea/Security Conflicts
This page lists security-related conflicts I've encountered that aren't easily documented elsewhere, or else are easily forgotten with time. These should be put somewhere more appropriate as opportunity permits.
Conflicts with 'noexec'
DBeaver
dbeaver uses Eclipse SWT, which seems to want to write out .so
files into the user's home directory and then execute them. Obviously, that won't work if the volume is noexec
.
A separate user raised upstream issue #960: Not running in noexe mounted home, which resulted in a simple workaround: Choose (or create) a path that is rwx
able on a volume which doesn't have noexec
, and then run with dbeaver -vmargs -Duser.home=<path_to_location>
.
Conflicts with 'umask 027'
You'll need to add something like chmod --recursive <permissions> "${srcdir}"
to the PKGBUILD
if the files are installed by script (or otherwise not using install
):