Bug 147056

Summary: inetd as nobody.tty causes setgid/setuid as myuser: Operation not permitted
Product: ktalkd Reporter: Olivier Vitrat <ovit.debian>
Component: generalAssignee: David Faure <faure>
Status: RESOLVED INTENTIONAL    
Severity: normal    
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: Debian stable   
OS: Linux   
Latest Commit: Version Fixed In:

Description Olivier Vitrat 2007-06-21 20:15:29 UTC 
Version:            (using KDE KDE 3.5.5)
Installed from:    Debian stable Packages

Reported in Debian BTS at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=386334 and http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=206843


ktalkd is set to run as nobody.tty in /etc/inetd.conf.  When I try to
connect to it I get this in /var/log/daemon.log

Sep  6 16:03:24 pineapple ktalkd[6692]: connect from 192.168.1.233 (192.168.1.233)
Sep  6 16:03:24 pineapple ktalkd[6692]: 192.168.1.233: bad dns
Sep  6 16:03:25 pineapple ktalkd[6692]: 192.168.1.233: bad dns
Sep  6 16:03:26 pineapple ktalkd[6693]: connect from 192.168.1.44 (192.168.1.44)
Sep  6 16:03:26 pineapple ktalkd[6693]: XDM login: myuser at :0
Sep  6 16:03:26 pineapple ktalkd[6694]: Warning: setgid/setuid as myuser: Operation not permitted
Sep  6 16:03:26 pineapple ktalkd[6692]: 192.168.1.233: bad dns

I think the "setgid/setuid as myuser: Operation not permitted" line is
the problem.  The same problem exists in Etch as well.
Comment 1 Hai Zaar 2008-07-03 17:35:56 UTC 
Same problem on latest Debian/Testing. Kde-3.5.9.
Comment 2 David Faure 2008-07-03 19:08:35 UTC 
So people are still using ktalkd? That's amazing.
It has been removed from KDE 4, for two reasons: apparent lack of interest from users (IM has replaced talk for most people), and a large number of security issues (I wrote ktalkd before I knew anything about security, which is bad for a daemon running as root)....
Sorry, I don't think this bug will ever get fixed :(