From owner-freebsd-bugs Wed Jan 8 4:29:50 2003 Delivered-To: freebsd-bugs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0225037B401 for ; Wed, 8 Jan 2003 04:29:49 -0800 (PST) Received: from mail11.atl.registeredsite.com (mail11.atl.registeredsite.com [64.224.219.85]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8217D43EA9 for ; Wed, 8 Jan 2003 04:29:45 -0800 (PST) (envelope-from admin@asarian-host.net) Received: from asarian-host.net (asarian-host.net [216.122.74.112]) by mail11.atl.registeredsite.com (8.12.2/8.12.6) with ESMTP id h08CTde7018282 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NOT) for ; Wed, 8 Jan 2003 07:29:39 -0500 Comments: To protect the identity of the sender, certain header fields are either not shown, or masked. Anonymous email addresses for asarians can be requested by filling in the appropriate form at: https://asarian-host.net/cgi-bin/signup.cgi Received: (from root@localhost) by asarian-host.net (8.11.6/8.11.0) id h08CTdL31380 for freebsd-bugs@freebsd.org; Wed, 8 Jan 2003 13:29:39 +0100 (CET) (envelope-from admin@asarian-host.net) Posted-Date: Wed, 8 Jan 2003 13:29:39 +0100 (CET) From: Mark Message-Id: <200301081229.H08CTAJ31351@asarian-host.net> Date: Wed, 8 Jan 2003 13:29:04 +0100 X-Authenticated-Sender: admin@asarian-host.net Subject: Re: bin/46838: security vulnerability in dump X-Trace: HMYWXw8PzqQVlGacgTG5ifRV2rXDVUvIiw4DCiBqe4HqclR9HZvf2+MB3OWjHRGj2OGE99VwAshc7PHibzvaYA== X-Complaints-To: abuse@asarian-host.net X-Abuse-Info: Please be sure to forward a copy of ALL headers X-Abuse-Info: Otherwise we are unable to process your complaint Organization: Asarian-host To: "Mike Makonnen" Cc: , References: <200301072050.h07Ko4Kj025064@asarian-host.net> <20030108050541.PSPE4558.pop018.verizon.net@localhost> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Auth: Asarian-host PGP signature iQEVAwUAPhwZsjFqW1BleBN9AQGQywf+JK8gvBgUy/lH78hl8fZ2DhVyeM2QTYPb m9G48s7xK8vLceyGEBC4n+l8914KClVzjDMQTqXWsIbbx28nCQz2k26+RkoxrfXu MIAhW7sH00rczH897sGj/U89i+D6u2S/HfG391/REMXbCwGmjPuDwFVLpdTJRJxF RE6M0LiJaCXcxAL9bucjGD/huKV7jFg2+Kb2EkGhf9f3haAFxW5Ug0B+caWwTnW9 2nvh/J6AzICAxDBtT17o+VwRLIXjoDvhNVI9CBf0nmoPA9pIpyzIzKpiI/dzG6X6 Q///NkIysW/2E5QPzgKxUZYB6sXIlXiixYe3XZC2209PciwAqrZDQw== =Ye1n Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I can live with that. :) The man-page takes adequately care of it. Thank you for your time and having taken this into consideration. - Mark System Administrator Asarian-host.org --- "If you were supposed to understand it, we wouldn't call it code." - FedEx ----- Original Message ----- From: "Mike Makonnen" To: "Mark" Cc: ; Sent: Wednesday, January 08, 2003 6:05 AM Subject: Re: bin/46838: security vulnerability in dump > I have to agree with David here. Dump should not hard code any file > creation modes. We have no way of anticipating (or the right to dictate) > how an administrator should run his system. However, it probably > deserves a mention in the man page. Does the following patch address > your concerns? > > Cheers. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message