![]() ![]() We/I don't trust every upstream to maintain a bug-free and uncompromised build system code and neither should you (which is why we introduced the sandbox). A mistake in (or malicious actor modifying upstream) a single Makefile can do whatever they want to any file on your system. It's terrible, terrible security to have every build-from-source build system running as root. It's also decent security to not have the normal unprivileged user account to not have write permission to any directories that are in the $PATH. You can install Homebrew in any location as any user, it's just not our default. Homebrew should support a scenario where Homebrew is not in /usr/local because the brew package manager can't reasonably expect to have exclusive control over the contents of /usr/local. ![]() I know the Homebrew collective opinion is that the best experience is running Homebrew in /usr/local and changing the permissions so that the brew user can write there without sudo, but I don't want to do that. ![]() Print out a warning if you feel like that is necessary. It sounds like the ideal thing would be for brew to drop its privileges for downloading packages and tarballs and performing the build when run as root and only use the root privilege for the install step - but failing that, please don't intentionally break this workflow. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |