Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 22 Feb 2002 15:25:29 -0800
From:      Kris Kennaway <kris@obsecurity.org>
To:        =?iso-8859-1?Q?Milon_Papez=EDk?= <Milon.Papezik@oskarmobil.cz>
Cc:        'Matthew Dillon' <dillon@apollo.backplane.com>, "'freebsd-security@freebsd.org'" <freebsd-security@FreeBSD.ORG>
Subject:   Re: RE: Third /tmp location ?
Message-ID:  <20020222152529.A16356@xor.obsecurity.org>
In-Reply-To: <B57AF59C8ABFD411BBE000508BF300F303B70634@wh01ex01.oskarmobil.cz>; from Milon.Papezik@oskarmobil.cz on Sat, Feb 23, 2002 at 12:13:55AM %2B0100
References:  <B57AF59C8ABFD411BBE000508BF300F303B70634@wh01ex01.oskarmobil.cz>
next in thread | previous in thread | raw e-mail | index | archive | help 

--EVF5PPMfhYS0aIcm
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Sat, Feb 23, 2002 at 12:13:55AM +0100, Milon Papez=EDk wrote:
> Hi,
>=20
> I simply installed 4.5R from ISO image with separate /, /usr, /var and
> /home.
>=20
> After some configuration I run automated security check (script)
> and it reported 3rd world writable directory /usr/tmp.
> That was quite a surprise to me, especially with respect
> to the debate over it some time ago on this list.

Hmm.. there are faint bells ringing in my head somewhere which are
telling me it might be something to do with pkg_add: I think I've seen
this once or twice before, but it didn't bother me enough to track it
down.  It's pretty likely I'm just randomly associating but if anyone
is looking into this it might be something to check.

Kris

--EVF5PPMfhYS0aIcm
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8dtNpWry0BWjoQKURAjwmAKCzcSZVJj1X2NLeZ1SdRNa9x1sT7gCguUhx
tSGchzuVAZ3k4Iy6Uf2kdIE=
=BsBi
-----END PGP SIGNATURE-----

--EVF5PPMfhYS0aIcm--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020222152529.A16356>