Date: Wed, 25 Feb 2009 18:39:32 -0600 From: Eric Schuele <e.schuele@computer.org> To: bseklecki@collaborativefusion.com Cc: freebsd-questions@freebsd.org, Aleksandr Miroslav <alexmiroslav@gmail.com> Subject: Re: weird permissions on directories when installing ports through sudo Message-ID: <49A5E4C4.7090204@computer.org> In-Reply-To: <1235584156.21167.108.camel@soundwave.ws.pitbpa0.priv.collaborativefusion.com> References: <9fa4f0760902191356s7297d7b0ycac7ff0a885efd1f@mail.gmail.com> <49A577EE.3030604@computer.org> <1235584156.21167.108.camel@soundwave.ws.pitbpa0.priv.collaborativefusion.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig0246AD5EBA28F146051D2501 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 02/25/2009 11:49, Brian A. Seklecki wrote: >> lowering the umask of the person running sudo. >> >> This had the effect of truly screwing up many installed ports for me=20 >=20 > Maybe try "sudo -H -u root [command]" NetBSD Pkgsrc is nice in this > respect because it has sudo(8) integration in the MKs. ~BAS I didn't think this would do much, but gave it a try anyway.... And it doesn't help. :/ The following command prior to the change resulted in root's umask being displayed: sudo -H -u root umask Whereas after the change in sudo I mentioned, the union of mine and root's is presented. I looked at the security issue mentioned in the commit log, and I'm not sure this change was required in order to fix it. Anyone have thoughts on why this change was made? I'd argue POLA was broken here. But I don't keep up with sudo developments (aside from using it). --=20 Regards, Eric --------------enig0246AD5EBA28F146051D2501 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.10 (FreeBSD) iEYEARECAAYFAkml5MQACgkQngSDRM3IXUpVMQCdFJ0Ya9x/TWZrb2r1itN1Xal1 e+YAoLMkK3t1fEjUUw0tLqZJ7D6SGOIH =NlUE -----END PGP SIGNATURE----- --------------enig0246AD5EBA28F146051D2501--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49A5E4C4.7090204>