Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 16 Jun 2003 19:40:09 -0400 (EDT)
From:      Andrew J Caines <A.J.Caines@halplant.com>
To:        FreeBSD-gnats-submit@FreeBSD.org
Cc:        ports@FreeBSD.org
Subject:   ports/53392: mail/pyzor installed files permissions incorrect
Message-ID:  <20030616234009.A284A7A@mail.halplant.com>
Resent-Message-ID: <200306162340.h5GNeDeS077307@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

>Number:         53392
>Category:       ports
>Synopsis:       mail/pyzor installed files permissions incorrect
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Mon Jun 16 16:40:12 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator:     Andrew J. Caines
>Release:        FreeBSD 4.8-STABLE i386
>Organization:
H.A.L. Plant
>Environment:
System: FreeBSD hal9000.halplant.com 4.8-STABLE FreeBSD 4.8-STABLE #0: Thu May 29 09:59:30 EDT 2003 root@hal9000.halplant.com:/.disk/obj/home/src/
sys/HAL9000 i386

>Description:
	The pyzor-0.4.0_1 (mail/pyzor) port installs its single doc with
	read (and, unneccesarily, write) access only to root. It is 600,
	but it should be 444.

	It would be good to install files such as README and ChangeLog as
	docs too.

	Additionally, the pyzor(d) scrips are installed 711, however I
	would expect 555 since they should not be writable and there is no
	need to hide the code from users.

>How-To-Repeat:
	# cd /usr/ports/mail/pyzor ; make && make install
	[snip]
	running install_scripts
	copying build/scripts-2.2/pyzor -> /usr/local/bin
	copying build/scripts-2.2/pyzord -> /usr/local/bin
	changing mode of /usr/local/bin/pyzor to 711
	changing mode of /usr/local/bin/pyzord to 711
	running install_data
	creating /usr/local/share/doc/pyzor
	copying docs/usage.html -> /usr/local/share/doc/pyzor
	===>   Generating temporary packing list
	===>   Registering installation for pyzor-0.4.0_1

	# ls -l 
	-rw-------  1 root  wheel  15560 Sep  7  2002 /usr/local/share/doc/pyzor/usage.html

>Fix:
	pyzor-0.4.0/INSTALL indicates the need for this permissions
	change. AFAICT the "changing mode of ..." is part of the python
	package
	(${PREFIX}/lib/python2.2/distutils/command/install_scripts.py) and
	relies on pyzor-0.4.0/setup.py, however with my knowledge of
	Python (ie. diddly-squat) and quick insprection, it's not clear
	what change to make or to where, but clearly the mechanism exists.


>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030616234009.A284A7A>