Date: Mon, 9 Mar 2009 00:52:04 +0900 From: Daniel Marsh <jahilliya@gmail.com> To: Randy Bush <randy@psg.com>, freebsd-security@freebsd.org Subject: Re: emacs installs a lot of 777 directories Message-ID: <ba5e78ea0903080852n2d465510l73f2d3ee6ed8e0d9@mail.gmail.com> In-Reply-To: <m2ljrggzwc.wl%randy@psg.com> References: <m2iqmnxupl.wl%randy@psg.com> <1236312264.7184.1.camel@yog-sothoth.rlyeh> <m2ljrggzwc.wl%randy@psg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Sorry, but when was emaca installed? If you deinstall and reinstall after verifying the suspect directories are deleted, and roots umask is 022 do you get the same problem? Are you doing make install as a user and letting the port escalate privaleges? Or do you login , sudo or su to root? Login via tty as root, check umask and install port Make install as user will su to root but you need to check the users umask Sudo will use the users umask not root su is the same as sudo > su - root This will work as it simulates a login and sets roots environment, including the umask Umask is set during login, most privilege escalation commands arth the euid to root but not the uid, they also don't run through the login process (ie ~/.login ) which sets up your environment Regards Daniel On 3/8/09, Randy Bush <randy@psg.com> wrote: > At Fri, 06 Mar 2009 13:04:24 +0900, > Daniel Marsh <jahilliya@gmail.com> wrote: >> >> On Fri, 2009-03-06 at 11:15 +0900, Randy Bush wrote: >> > foo.on.you:/usr/local/share# find . -type d -perm 777 >> > ./emacs/22.3/etc/tree-widget >> > ./emacs/22.3/etc/tree-widget/folder >> > ./emacs/22.3/etc/tree-widget/default >> > ./emacs/22.3/etc/e >> > ./emacs/22.3/etc/images >> > ./emacs/22.3/etc/images/low-color >> > ./emacs/22.3/etc/images/gnus >> > ./emacs/22.3/etc/images/icons >> > ./emacs/22.3/etc/images/gud >> > ./emacs/22.3/etc/images/smilies >> > ./emacs/22.3/etc/images/mail >> > ./emacs/22.3/etc/images/ezimage >> > ./emacs/22.3/lisp >> > ./emacs/22.3/lisp/net >> > ./emacs/22.3/lisp/progmodes >> > ./emacs/22.3/lisp/calc >> > ./emacs/22.3/lisp/emacs-lisp >> > ./emacs/22.3/lisp/url >> > ./emacs/22.3/lisp/emulation >> > ./emacs/22.3/lisp/play >> > ./emacs/22.3/lisp/erc >> > ./emacs/22.3/lisp/term >> > ./emacs/22.3/lisp/obsolete >> > ./emacs/22.3/lisp/textmodes >> > ./emacs/22.3/lisp/mail >> > ./emacs/22.3/lisp/eshell >> > ./emacs/22.3/lisp/calendar >> > ./emacs/22.3/lisp/mh-e >> > ./emacs/22.3/lisp/international >> > ./emacs/22.3/lisp/gnus >> > ./emacs/22.3/lisp/language >> > ./emacs/22.3/leim/ja-dic >> > ./emacs/22.3/leim/quail >> > _______________________________________________ >> > freebsd-security@freebsd.org mailing list >> > http://lists.freebsd.org/mailman/listinfo/freebsd-security >> > To unsubscribe, send any mail to >> > "freebsd-security-unsubscribe@freebsd.org" >> >> Could this simply be an over promiscuous umask being set when Emacs was >> installed? ie. umask 000 rather than the default umask 022 for root? > > root's umask is 022 > > randy > -- Sent from my mobile device http://buymeahouse.stiw.org/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ba5e78ea0903080852n2d465510l73f2d3ee6ed8e0d9>