Date: Thu, 13 Jul 2000 08:36:50 -0700 (PDT) From: John Polstra <jdp@polstra.com> To: ports@freebsd.org Subject: Proposed ldconfig change vs. ports Message-ID: <XFMail.000713083650.jdp@polstra.com>
next in thread | raw e-mail | index | archive | help
A submitter has sent me a patch for ldconfig which makes it complain and ignore directories which aren't owned by root, or which are world-writable. I think it is a good patch from a security standpoint, since if somebody can replace your shared libraries they can easily get root and do anything they want. So I would like to commit this change. But I am a little bit worried that it might break some ports. Do any of you know of ports which install shared libraries into directories not owned by root? Would it be reasonable to consider cases of that to be bugs in the ports themselves? Thanks, John -- John Polstra jdp@polstra.com John D. Polstra & Co., Inc. Seattle, Washington USA "Disappointment is a good sign of basic intelligence." -- Chögyam Trungpa To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.000713083650.jdp>