... please wake up!
No, not in general. You guys are doing a great job. Working on EasyLFS I certainly do know that building a distribution, however small it may be, is a lot of work and deserves respect. And some of you, like the folks behind Fedora and Ubuntu, really drive the development forward by bringing a lot of cool, new stuff.
But something is missing! Yes, it's being totally overlooked, although it's already there and working for quite a while now. POSIX-Capabilities. Yes, you guys deliver all the tools to use them, but you don't utilize them.
Or why is my ping-command still setuid root? That's not necessary at all.
I have played around a bit with capabilites, and I am proud to say that my little distro, EasyLFS, features ping and passwd without the setuid-bit set! Why can't you guys do this?
I have simply followed the instructions that Chris Friedhoff posted well over a year ago.
It's not hard, as you can see there. EasyLFS is a one-man-show, but I did it. It works! Also together with SELinux.
So my question to all you folks out there who make all those big and cool distributions: Why don't you use this? I find it impossible to believe that nobody in the Fedora-/Ubuntu-/Debian-/whatever-team has ever heard about this. But why is nothing going here?
Is it not worth it? I say it certainly is. Isn't it one of the big principles of security to only assign those privileges that are necessary to do a job? So why do Linux-users have to be made root for a simple ping? Or to update their password?
And think about all those other beautiful things that may be possible with POSIX-capabilities? One might give additional power to a user by giving him specific capabilities.
But hey, I guess that's not for you guys to do, but your systems should support it.
But what you guys should do is get rid of the setuid-bit as much as possible and replace it with the appropriate capabilities.
Give us users another reason to be proud of the security of our systems! ;-)