[PATCH] portmaster with SU_CMD
Stefan Sperling
stsp at stsp.name
Wed Nov 14 10:43:29 PST 2007
On Wed, Nov 14, 2007 at 10:36:10AM +0000, lemon wrote:
>
> I doubt there's any need for more cautionary tales about the wisdom of
> building stuff as root(*), but I can't resist throwing this in as an
> example of an astounding build-time glitch with bad consequences if done
> as root:
>
> <http://use.perl.org/~Alias/journal/34680>
Great example. It illustrates how this is not about security.
It's simply about screw-ups like this one I'm afraid of.
> (*) FWIW: I agree with Greg, it's a matter of taste or principle.
Me too. That's why the patch adds a knob, and doesn't change defaults.
If people want some CPAN module to rm -rf their root filesystem
by accident, so be it, it's their system, not mine :)
--
stefan
http://stsp.name PGP Key: 0xF59D25F0
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20071114/7850678e/attachment.pgp
More information about the freebsd-ports
mailing list