Date: Mon, 25 Feb 2002 14:07:31 +0100 From: =?iso-8859-1?Q?Milon_Papez=EDk?= <Milon.Papezik@oskarmobil.cz> To: "'Kris Kennaway'" <kris@obsecurity.org>, "Scot W. Hetzel" <hetzels@westbend.net> Cc: "'freebsd-security@freebsd.org'" <freebsd-security@FreeBSD.ORG> Subject: RE: RE: Third /tmp location ? Message-ID: <B57AF59C8ABFD411BBE000508BF300F303B7063D@wh01ex01.oskarmobil.cz>
next in thread | raw e-mail | index | archive | help
OK, in such case the /usr/tmp/shloud does not need and should not be world writable (i.e. mode only 01700 instead of 01777). Thanks, Milon -- milon.papezik@oskarmobil.cz -----Original Message----- From: Kris Kennaway [mailto:kris@obsecurity.org] Sent: Sunday, February 24, 2002 1:17 AM To: Scot W. Hetzel Cc: Kris Kennaway; Milon Papez=EDk; 'Matthew Dillon'; 'freebsd-security@freebsd.org' Subject: Re: RE: Third /tmp location ? On Sat, Feb 23, 2002 at 02:48:52PM -0600, Scot W. Hetzel wrote: > From: "Kris Kennaway" <kris@obsecurity.org> >=20 > How about patching find_play_pen to set a variable to say that = /usr/tmp was > created by the pkg_install tools and then when the pkg_install tools = call > leave_playpen, /usr/tmp is removed only if the variable is set. That might be the best idea. > attached is a untested patch for pen.c. It's best to include patches directly so they can be read inline, but thanks..I'll try and take a look at it. Kris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?B57AF59C8ABFD411BBE000508BF300F303B7063D>