Date: Sat, 29 May 2004 10:09:50 -0400 (EDT) From: Jon Nistor <nistor@snickers.org> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/67340: Update net/bmon Message-ID: <20040529140950.08535F977@spike.snickers.org> Resent-Message-ID: <200405291420.i4TEK8mr058751@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 67340 >Category: ports >Synopsis: Update net/bmon >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Sat May 29 07:20:08 PDT 2004 >Closed-Date: >Last-Modified: >Originator: Jon Nistor >Release: FreeBSD 4.9-STABLE i386 >Organization: >Environment: System: FreeBSD spike.snickers.org 4.9-STABLE FreeBSD 4.9-STABLE #0: Thu Jan 29 17:13:22 EST 2004 root@spike.snickers.org:/usr/obj/usr/src/sys/SPIKE i386 >Description: Possible trivial root vuln. User dropped me an email with information that port contains popen call without an absolute path. >How-To-Repeat: null >Fix: Port does not need to be suid root, perms changed to 755. Both shar and diff included. # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # bmon # bmon/Makefile # bmon/distinfo # bmon/pkg-descr # echo c - bmon mkdir -p bmon > /dev/null 2>&1 echo x - bmon/Makefile sed 's/^X//' >bmon/Makefile << 'END-of-bmon/Makefile' X# New ports collection makefile for: bmon X# Date created: 21 Feb 2003 X# Whom: Jon Nistor <nistor@snickers.org> X# X# $FreeBSD: ports/net/bmon/Makefile,v 1.4 2004/02/06 13:11:57 trevor Exp $ X# X XPORTNAME= bmon XPORTVERSION= 1.2.1 XPORTREVISION= 1 XCATEGORIES= net XMASTER_SITES= http://trash.net/~reeler/bmon/files/ X XMAINTAINER= nistor@snickers.org XCOMMENT= "BMON - bandwidth monitor using curses lib" X XGNU_CONFIGURE= YES XUSE_GMAKE= YES X XMAN1= bmon.1 XPLIST_FILES= sbin/bmon X Xdo-install: X ${INSTALL} ${STRIP} ${COPY} ${_BINOWNGRP} -m 755 ${WRKSRC}/bmon ${PREFIX}/bin X ${INSTALL_MAN} ${WRKSRC}/bmon.1 ${PREFIX}/man/man1/bmon.1 X X.include <bsd.port.mk> END-of-bmon/Makefile echo x - bmon/distinfo sed 's/^X//' >bmon/distinfo << 'END-of-bmon/distinfo' XMD5 (bmon-1.2.1.tar.gz) = 229959798c838ebabc042eedd5c9c427 XSIZE (bmon-1.2.1.tar.gz) = 76188 END-of-bmon/distinfo echo x - bmon/pkg-descr sed 's/^X//' >bmon/pkg-descr << 'END-of-bmon/pkg-descr' Xbmon is an interface bandwidth monitor using the curses library. XIt's able to compute and draw three types of diagrams (overview, Xgraphical, and detailed). The overview diagram is a list of all Xinterfaces including the rx/tx rates of each interface. The Xgraphical diagram is a bar graph in ASCII. All diagrams are Xcontinously updated. X XWWW: http://trash.net/~reeler/bmon/ END-of-bmon/pkg-descr exit DIFF: --- bmon.orig/Makefile Sat May 29 09:59:56 2004 +++ bmon/Makefile Sat May 29 10:00:27 2004 @@ -21,7 +21,7 @@ PLIST_FILES= sbin/bmon do-install: - ${INSTALL} ${STRIP} ${COPY} ${_BINOWNGRP} -m 4755 ${WRKSRC}/bmon ${PREFIX}/sbin + ${INSTALL} ${STRIP} ${COPY} ${_BINOWNGRP} -m 755 ${WRKSRC}/bmon ${PREFIX}/bin ${INSTALL_MAN} ${WRKSRC}/bmon.1 ${PREFIX}/man/man1/bmon.1 >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040529140950.08535F977>