From owner-freebsd-audit Thu Jul 4 3:16: 7 2002 Delivered-To: freebsd-audit@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E9B5B37B407 for ; Thu, 4 Jul 2002 03:16:00 -0700 (PDT) Received: from mail.musha.org (daemon.musha.org [218.44.187.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id EF33643E4A for ; Thu, 4 Jul 2002 03:15:59 -0700 (PDT) (envelope-from knu@iDaemons.org) Received: from daemon.musha.org (daemon.local.idaemons.org [192.168.1.1]) by mail.musha.org (Postfix) with ESMTP id 6ECB64D81A for ; Thu, 4 Jul 2002 19:15:58 +0900 (JST) Date: Thu, 04 Jul 2002 19:15:58 +0900 Message-ID: <86sn2zpzmp.wl@daemon.musha.org> From: "Akinori MUSHA" To: audit@FreeBSD.org Subject: suidperl User-Agent: Wanderlust/2.9.13 (Unchained Melody) SEMI/1.14.4 (Hosorogi) LIMIT/1.14.7 (Fujiidera) APEL/10.3 Emacs/21.2 (i386--freebsd) MULE/5.0 (SAKAKI) Organization: Associated I. Daemons X-PGP-Public-Key: finger knu@FreeBSD.org X-PGP-Fingerprint: 081D 099C 1705 861D 4B70 B04A 920B EFC7 9FD9 E1EE MIME-Version: 1.0 (generated by SEMI 1.14.4 - "Hosorogi") Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-audit@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Here's a patch that fixes suidperl and ENABLE_SUIDPERL. Currently you cannot easily enable suidperl even by hand, because perl, perl5, perl5.6.1 and suidperl are hardlinks to each other. (`chmod 4555 /usr/bin/suidperl' also affects /usr/bin/perl) Index: src/usr.bin/Makefile =================================================================== RCS file: /home/ncvs/src/usr.bin/Makefile,v retrieving revision 1.213 diff -u -r1.213 Makefile --- src/usr.bin/Makefile 3 Jul 2002 19:23:50 -0000 1.213 +++ src/usr.bin/Makefile 4 Jul 2002 10:14:19 -0000 @@ -146,6 +146,7 @@ split \ stat \ su \ + suidperl \ symorder \ systat \ tabs \ Index: src/usr.bin/perl/Makefile =================================================================== RCS file: /home/ncvs/src/usr.bin/perl/Makefile,v retrieving revision 1.5 diff -u -r1.5 Makefile --- src/usr.bin/perl/Makefile 7 Jun 2002 18:55:42 -0000 1.5 +++ src/usr.bin/perl/Makefile 4 Jul 2002 09:20:54 -0000 @@ -4,7 +4,6 @@ NOMAN= WARNS?= 6 LINKS= ${BINDIR}/perl ${BINDIR}/perl5 \ - ${BINDIR}/perl ${BINDIR}/perl5.6.1 \ - ${BINDIR}/perl ${BINDIR}/suidperl + ${BINDIR}/perl ${BINDIR}/perl5.6.1 .include Index: src/usr.bin/suidperl/Makefile =================================================================== RCS file: src/usr.bin/suidperl/Makefile diff -N src/usr.bin/suidperl/Makefile --- /dev/null 1 Jan 1970 00:00:00 -0000 +++ src/usr.bin/suidperl/Makefile 4 Jul 2002 10:08:12 -0000 @@ -0,0 +1,15 @@ +# $FreeBSD$ + +.PATH: ${.CURDIR}/../perl + +PROG= suidperl +SRCS= perl.c +NOMAN= +WARNS?= 6 + +BINOWN= root +.if defined(ENABLE_SUIDPERL) +BINMODE=4555 +.endif + +.include -- / /__ __ Akinori.org / MUSHA.org / ) ) ) ) / FreeBSD.org / Ruby-lang.org Akinori MUSHA aka / (_ / ( (__( @ iDaemons.org / and.or.jp "When I leave I don't know what I'm hoping to find When I leave I don't know what I'm leaving behind.." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message