Date: Tue, 28 Dec 1999 17:38:36 -0600 (CST) From: Steve Price <sprice@hiwaay.net> To: Spidey <beaupran@iro.umontreal.ca> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ports/15577: Amanda 2.3.0 runtar program allow any user to run tar as root Message-ID: <Pine.OSF.4.21.9912281736390.31646-100000@fly.HiWAAY.net> In-Reply-To: <14441.2614.114877.349074@anarcat.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 28 Dec 1999, Spidey wrote: # Hi. # # I don't know if any of you took a look at this PR I made, but I think # it would be a good idea. # # I would like to have your advice on the modifications I am # suggesting. # # Also, it would be urgent to mark the port either as broken or commit # the fix, as, right now, anyone who installs the amanda 2.3 package # from the ports or the packages is very likely to get *wacked* by its # local users. # # Should I have posted this earlier to the list? I thought someone would # have noticed the PR... I noticed the problem report. The 'patch' needs help, but I've almost got something that I think accomplishes the spirit of the PR at least. Look for it to get committed, later tonight. -steve To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.OSF.4.21.9912281736390.31646-100000>