Site Navigation

Date:      Fri, 06 Mar 2009 13:04:24 +0900
From:      Daniel Marsh <jahilliya@gmail.com>
To:        Randy Bush <randy@psg.com>
Cc:        freebsd-security@freebsd.org
Subject:   Re: emacs installs a lot of 777 directories
Message-ID:  <1236312264.7184.1.camel@yog-sothoth.rlyeh>
In-Reply-To: <m2iqmnxupl.wl%randy@psg.com>
References:  <m2iqmnxupl.wl%randy@psg.com>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

On Fri, 2009-03-06 at 11:15 +0900, Randy Bush wrote:
> foo.on.you:/usr/local/share# find . -type d -perm 777
> ./emacs/22.3/etc/tree-widget
> ./emacs/22.3/etc/tree-widget/folder
> ./emacs/22.3/etc/tree-widget/default
> ./emacs/22.3/etc/e
> ./emacs/22.3/etc/images
> ./emacs/22.3/etc/images/low-color
> ./emacs/22.3/etc/images/gnus
> ./emacs/22.3/etc/images/icons
> ./emacs/22.3/etc/images/gud
> ./emacs/22.3/etc/images/smilies
> ./emacs/22.3/etc/images/mail
> ./emacs/22.3/etc/images/ezimage
> ./emacs/22.3/lisp
> ./emacs/22.3/lisp/net
> ./emacs/22.3/lisp/progmodes
> ./emacs/22.3/lisp/calc
> ./emacs/22.3/lisp/emacs-lisp
> ./emacs/22.3/lisp/url
> ./emacs/22.3/lisp/emulation
> ./emacs/22.3/lisp/play
> ./emacs/22.3/lisp/erc
> ./emacs/22.3/lisp/term
> ./emacs/22.3/lisp/obsolete
> ./emacs/22.3/lisp/textmodes
> ./emacs/22.3/lisp/mail
> ./emacs/22.3/lisp/eshell
> ./emacs/22.3/lisp/calendar
> ./emacs/22.3/lisp/mh-e
> ./emacs/22.3/lisp/international
> ./emacs/22.3/lisp/gnus
> ./emacs/22.3/lisp/language
> ./emacs/22.3/leim/ja-dic
> ./emacs/22.3/leim/quail
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

Could this simply be an over promiscuous umask being set when Emacs was
installed? ie. umask 000 rather than the default umask 022 for root?

I know I get warnings if attempting to install a package with a umask
077 which means no-one except the installer can access the files.

Do packages print a warning to screen if umask 000 is set?

Regards,
Daniel

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1236312264.7184.1.camel>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact