Date: 13 Jul 2000 11:21:10 -0700 From: asami@freebsd.org (Satoshi - Ports Wraith - Asami) To: John Polstra <jdp@polstra.com> Cc: ports@freebsd.org Subject: Re: Proposed ldconfig change vs. ports Message-ID: <vqc1z0x99ih.fsf@silvia.hip.berkeley.edu> In-Reply-To: John Polstra's message of "Thu, 13 Jul 2000 08:36:50 -0700 (PDT)" References: <XFMail.000713083650.jdp@polstra.com>
next in thread | previous in thread | raw e-mail | index | archive | help
* From: John Polstra <jdp@polstra.com> * A submitter has sent me a patch for ldconfig which makes it complain * and ignore directories which aren't owned by root, or which are * world-writable. I think it is a good patch from a security * standpoint, since if somebody can replace your shared libraries they * can easily get root and do anything they want. So I would like to * commit this change. * * But I am a little bit worried that it might break some ports. Do * any of you know of ports which install shared libraries into * directories not owned by root? Would it be reasonable to consider * cases of that to be bugs in the ports themselves? I think those are bugs and the ldconfig change might help us find them! Satoshi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?vqc1z0x99ih.fsf>