From owner-freebsd-ports  Sat May  6 15:27:29 2000
Delivered-To: freebsd-ports@freebsd.org
Received: from aaz.links.ru (aaz.links.ru [193.125.152.37])
	by hub.freebsd.org (Postfix) with ESMTP
	id B3D8537B519; Sat,  6 May 2000 15:27:25 -0700 (PDT)
	(envelope-from babolo@links.ru)
Received: (from babolo@localhost)
	by aaz.links.ru (8.9.3/8.9.3) id CAA22224;
	Sun, 7 May 2000 02:27:24 +0400 (MSD)
Message-Id: <200005062227.CAA22224@aaz.links.ru>
Subject: Re: ports projects
In-Reply-To: <200005021212.FAA46737@silvia.hip.berkeley.edu> from "Satoshi Asami" at "May 2, 0 05:12:53 am"
To: asami@FreeBSD.ORG (Satoshi Asami)
Date: Sun, 7 May 2000 02:27:23 +0400 (MSD)
Cc: ports@FreeBSD.ORG
From: "Aleksandr A.Babaylov" <babolo@links.ru>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Satoshi Asami writes:
..........
>  @  Security audit (working: kris and asami)
> 
>     I'll create a list of ports that install setuid/setgid/world
>     writable directories so Kris can use it for his ports security
>     audit project.
One of security risks is /tmp directory.
Some ports tests files created in /tmp not to be a symlink,
some not tests.
Enhansment is individual TMPDIRs in common /tmp
bin/18275 (http://www.links.ru/FreeBSD/mkinittmpdir/)
address this issue.
(I think that mkinittmpdir to be in base system)

PS
Sorry bad English

-- 
@BABOLO      http://links.ru/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message