Date: Tue, 18 Dec 2012 21:32:50 +0000 From: RW <rwmaillists@googlemail.com> To: freebsd-questions@freebsd.org Subject: Re: updatedb? Message-ID: <20121218213250.131de35c@gumby.homeunix.com> In-Reply-To: <kaqljd$gj4$1@ger.gmane.org> References: <kaqljd$gj4$1@ger.gmane.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 18 Dec 2012 21:01:33 +0000 (UTC) Walter Hurry wrote: > $ sudo /usr/libexec/locate.updatedb > >>> WARNING > >>> Executing updatedb as root. This WILL reveal all filenames > >>> on your machine to all login users, which is a security risk. > $ > > Why is it a "security risk"? Security through obscurity? Really? In > this day and age? > > Or am I missing something? If permissions have been set to prevent other users reading filenames then obviously leaking file names is security issue.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20121218213250.131de35c>