Date: Thu, 20 Jun 2002 08:03:01 -0400 From: Bryan Fullerton <bryanf@samurai.com> To: freebsd-security@FreeBSD.ORG Cc: freebsd-ports@freebsd.org Subject: Re: Apache 1.3.26 port Message-ID: <AB28EF78-8445-11D6-A5AC-0003936377F0@samurai.com> In-Reply-To: <20020620113115.GA73571@starjuice.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thursday, June 20, 2002, at 07:31 AM, Sheldon Hearn wrote: > Is it because people are replacing the contents of data.default with > their own content and leaving the symlink in place? It's because the port does things significantly differently than installing from the distribution tarball and doesn't explain what it's doing. In this case, patching the Makefile.tmpl to include lines that do a rm -rf of the *.default directories. Regardless, this seems more a -ports issue than a -security issue. > If so, then the problem has to do with the fact that folks aren't using > the symlinks and .defaults directories as intended. I think the > intention was always for the operator to replace the symlink with either > a directory or a symlink to the directory containing local content. That the intention isn't clear indicates that this needs clarification. That people have lost data indicates that the documentation is incomplete. Bryan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AB28EF78-8445-11D6-A5AC-0003936377F0>