Date: Fri, 22 Feb 2002 15:25:29 -0800 From: Kris Kennaway <kris@obsecurity.org> To: =?iso-8859-1?Q?Milon_Papez=EDk?= <Milon.Papezik@oskarmobil.cz> Cc: 'Matthew Dillon' <dillon@apollo.backplane.com>, "'freebsd-security@freebsd.org'" <freebsd-security@FreeBSD.ORG> Subject: Re: RE: Third /tmp location ? Message-ID: <20020222152529.A16356@xor.obsecurity.org> In-Reply-To: <B57AF59C8ABFD411BBE000508BF300F303B70634@wh01ex01.oskarmobil.cz>; from Milon.Papezik@oskarmobil.cz on Sat, Feb 23, 2002 at 12:13:55AM %2B0100 References: <B57AF59C8ABFD411BBE000508BF300F303B70634@wh01ex01.oskarmobil.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
--EVF5PPMfhYS0aIcm Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Feb 23, 2002 at 12:13:55AM +0100, Milon Papez=EDk wrote: > Hi, >=20 > I simply installed 4.5R from ISO image with separate /, /usr, /var and > /home. >=20 > After some configuration I run automated security check (script) > and it reported 3rd world writable directory /usr/tmp. > That was quite a surprise to me, especially with respect > to the debate over it some time ago on this list. Hmm.. there are faint bells ringing in my head somewhere which are telling me it might be something to do with pkg_add: I think I've seen this once or twice before, but it didn't bother me enough to track it down. It's pretty likely I'm just randomly associating but if anyone is looking into this it might be something to check. Kris --EVF5PPMfhYS0aIcm Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8dtNpWry0BWjoQKURAjwmAKCzcSZVJj1X2NLeZ1SdRNa9x1sT7gCguUhx tSGchzuVAZ3k4Iy6Uf2kdIE= =BsBi -----END PGP SIGNATURE----- --EVF5PPMfhYS0aIcm-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020222152529.A16356>