From owner-freebsd-security  Sat Feb 23 12:49:30 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mail.westbend.net (ns1.westbend.net [216.47.253.3])
	by hub.freebsd.org (Postfix) with ESMTP id 8E2CF37B404
	for <freebsd-security@FreeBSD.ORG>; Sat, 23 Feb 2002 12:49:24 -0800 (PST)
Received: from admin0 (WBIw010.westbend.net [216.47.253.30])
	by mail.westbend.net (8.11.6/8.11.6) with SMTP id g1NKmeX33664;
	Sat, 23 Feb 2002 14:48:40 -0600 (CST)
	(envelope-from hetzels@westbend.net)
Message-ID: <000501c1bcab$84ff2df0$1efd2fd8@westbend.net>
From: "Scot W. Hetzel" <hetzels@westbend.net>
To: "Kris Kennaway" <kris@obsecurity.org>
Cc: "Milon Papezík" <Milon.Papezik@oskarmobil.cz>,
	"'Matthew Dillon'" <dillon@apollo.backplane.com>,
	"'freebsd-security@freebsd.org'" <freebsd-security@FreeBSD.ORG>
References: <B57AF59C8ABFD411BBE000508BF300F303B70634@wh01ex01.oskarmobil.cz> <20020222152529.A16356@xor.obsecurity.org> <20020222152714.B16356@xor.obsecurity.org>
Subject: Re: RE: Third /tmp location ?
Date: Sat, 23 Feb 2002 14:48:52 -0600
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-Virus-Scanned: by amavisd-milter (http://amavis.org/)
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

From: "Kris Kennaway" <kris@obsecurity.org>

How about patching find_play_pen to set a variable to say that /usr/tmp was
created by the pkg_install tools and then when the pkg_install tools call
leave_playpen, /usr/tmp is removed only if the variable is set.

attached is a untested patch for pen.c.

Scot


begin 666 pen.c-patch
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/5"P@;VQD<VEG*3L*('T*
`
end


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message