From owner-freebsd-security@FreeBSD.ORG Sun Mar 8 15:42:22 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F2091106566B for ; Sun, 8 Mar 2009 15:42:22 +0000 (UTC) (envelope-from jahilliya@gmail.com) Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.233]) by mx1.freebsd.org (Postfix) with ESMTP id C60758FC12 for ; Sun, 8 Mar 2009 15:42:22 +0000 (UTC) (envelope-from jahilliya@gmail.com) Received: by rv-out-0506.google.com with SMTP id f6so1377438rvb.43 for ; Sun, 08 Mar 2009 08:42:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=F4fHbrXLzSQCp3swZdAK7cFA5h5mswzD3SLApp9Iop8=; b=BGWFv3MdAsftOmLBuizX/vSgQMnzPzSzKU9eHFngSbtA2ZgFrmyAbAMnyE9IuYozAY WhAdJ/eL67iA4M3ZE3/uxcmM15Lc29fq/GKQV+O5k1VBkYI8K6VZH6rJqyi7R76VtyYw +qa30jE1YXGWAkgR2cnRLjf1aYoXhvehFPAYc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=eUVCsBeE/i+EFJ2zi+sbHhaVAZZK8sM9dmpTNzchj6AJSjUNEJtupNN4JG4L9/Tm+I uHkGC9Zn6f+xokQo8NKUEKzcL/KK/yXv0ecNJULarCVenDrpWLfjyJaiV5nU90NNjhMs BOJjs67XwWl4fFGVOmW37FshzyApx7b9/z604= MIME-Version: 1.0 Received: by 10.140.173.17 with SMTP id v17mr2521165rve.98.1236526941998; Sun, 08 Mar 2009 08:42:21 -0700 (PDT) In-Reply-To: References: <1236312264.7184.1.camel@yog-sothoth.rlyeh> Date: Mon, 9 Mar 2009 00:42:21 +0900 Message-ID: From: Daniel Marsh To: Randy Bush , freebsd-security@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: Subject: Re: emacs installs a lot of 777 directories X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Mar 2009 15:42:23 -0000 And who owns the files? On 3/8/09, Randy Bush wrote: > At Fri, 06 Mar 2009 13:04:24 +0900, > Daniel Marsh wrote: >> >> On Fri, 2009-03-06 at 11:15 +0900, Randy Bush wrote: >> > foo.on.you:/usr/local/share# find . -type d -perm 777 >> > ./emacs/22.3/etc/tree-widget >> > ./emacs/22.3/etc/tree-widget/folder >> > ./emacs/22.3/etc/tree-widget/default >> > ./emacs/22.3/etc/e >> > ./emacs/22.3/etc/images >> > ./emacs/22.3/etc/images/low-color >> > ./emacs/22.3/etc/images/gnus >> > ./emacs/22.3/etc/images/icons >> > ./emacs/22.3/etc/images/gud >> > ./emacs/22.3/etc/images/smilies >> > ./emacs/22.3/etc/images/mail >> > ./emacs/22.3/etc/images/ezimage >> > ./emacs/22.3/lisp >> > ./emacs/22.3/lisp/net >> > ./emacs/22.3/lisp/progmodes >> > ./emacs/22.3/lisp/calc >> > ./emacs/22.3/lisp/emacs-lisp >> > ./emacs/22.3/lisp/url >> > ./emacs/22.3/lisp/emulation >> > ./emacs/22.3/lisp/play >> > ./emacs/22.3/lisp/erc >> > ./emacs/22.3/lisp/term >> > ./emacs/22.3/lisp/obsolete >> > ./emacs/22.3/lisp/textmodes >> > ./emacs/22.3/lisp/mail >> > ./emacs/22.3/lisp/eshell >> > ./emacs/22.3/lisp/calendar >> > ./emacs/22.3/lisp/mh-e >> > ./emacs/22.3/lisp/international >> > ./emacs/22.3/lisp/gnus >> > ./emacs/22.3/lisp/language >> > ./emacs/22.3/leim/ja-dic >> > ./emacs/22.3/leim/quail >> > _______________________________________________ >> > freebsd-security@freebsd.org mailing list >> > http://lists.freebsd.org/mailman/listinfo/freebsd-security >> > To unsubscribe, send any mail to >> > "freebsd-security-unsubscribe@freebsd.org" >> >> Could this simply be an over promiscuous umask being set when Emacs was >> installed? ie. umask 000 rather than the default umask 022 for root? > > root's umask is 022 > > randy > -- Sent from my mobile device http://buymeahouse.stiw.org/