Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 23 Jan 2002 10:57:19 +1030
From:      Greg Lehey <grog@FreeBSD.org>
To:        Ruslan Ermilov <ru@FreeBSD.ORG>
Cc:        Robert Watson <rwatson@FreeBSD.ORG>, Nate Williams <nate@yogotech.com>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, arch@FreeBSD.ORG
Subject:   Re: cvs commit: src/gnu/usr.bin/man/man Makefile man.c src/etc/mtree BSD.local.dist BSD.usr.dist BSD.x11-4.dist BSD.x11.dist
Message-ID:  <20020123105719.J31684@wantadilla.lemis.com>
In-Reply-To: <20020122105839.C78733@sunbay.com>
References:  <15436.42142.53176.44467@caddis.yogotech.com> <Pine.NEB.3.96L.1020121183943.69509T-100000@fledge.watson.org> <20020122105839.C78733@sunbay.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Tuesday, 22 January 2002 at 10:58:39 +0200, Ruslan Ermilov wrote:
> On Mon, Jan 21, 2002 at 06:54:02PM -0500, Robert Watson wrote:
>> For compatibility purposes, it might be reasonable to install man
>> non-setuid, but still have the cat pages and directories be installed as
>> the man user.  Then twiddling man to setuid man from bin/bin would still
>> work for those wanting to enable it.  However, for the default install, we
>> should either rely purely on nroff source, or also install the catman
>> distribution.
>>
> OK, here's what I will do:
>
> 1.  Restore man.c's SETUID code but do not enable it.
>
> 2.  Fix SETUID code so that:
>
>     a) system catpages are created in a pristine environment
>        (/usr/bin/env -i)
>
>     b) SETUID path is only attempted for system catpages
>
> 3.  Provide make.conf knob (ENABLE_SUID_MAN) for installing
>     man(1) ``setuid man''.
>
> a) will fix the environment race, b) will fix the symlink race.
> I've already implemented a), and will post a patch here when
> b) is also implemented.

That looks like a good solution.

Greg
--
See complete headers for address and phone numbers

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020123105719.J31684>