On Fri, May 22, 2020 at 2:07 PM Nicolas Iooss <nicolas.iooss@xxxxxxx> wrote: > > On Fri, May 22, 2020 at 12:39 AM William Roberts > <bill.c.roberts@xxxxxxxxx> wrote: > > > > <snip> > > > * fedora-test-runner.sh uses ~, which is expanded to /root as it does > > > not make sense to run this script as non-root user. In my humble > > > opinion, using /root instead of ~ makes the script even easier to > > > read. > > > > I forgot to mention this in my previous email, this is the only thing > > I really don't > > want to change. You could, in theory, configure any user to run this. > > > > <snip> > > The script executes "setenforce 0", runs dnf to install packages and > overwrites binaries and libraries in system directories (/usr/bin, > /usr/sbin, /usr/lib64, etc.). How do you allow any user to perform > these actions, without being root? Its called capabilities. I could build you a box where root is neutered and cannot do anything. > > Anyway, if you do not want to hardcode /root, to could use "$HOME" > instead of ~. It makes things appear less magical, in my humble > opinion. Sure, it actually makes it consistent with the other script. > > Nicolas >
