emacs installs a lot of 777 directories

Daniel Marsh jahilliya at gmail.com
Sun Mar 8 08:52:05 PDT 2009 

Sorry, but when was emaca installed?

If you deinstall and reinstall after verifying the suspect directories
are deleted, and roots umask is 022 do you get the same problem?

Are you doing make install as a user and letting the port escalate
privaleges? Or do you login , sudo or su to root?

Login via tty as root, check umask and install port

Make install as user will su to root but you need to check the users umask

Sudo will use the users umask not root

su is the same as sudo

> su - root
This will work as it simulates a login and sets roots environment,
including the umask

Umask is set during login, most privilege escalation commands arth the
euid to root but not the uid, they also don't run through the login
process (ie ~/.login ) which sets up your environment

Regards
Daniel

On 3/8/09, Randy Bush <randy at psg.com> wrote:
> At Fri, 06 Mar 2009 13:04:24 +0900,
> Daniel Marsh <jahilliya at gmail.com> wrote:
>>
>> On Fri, 2009-03-06 at 11:15 +0900, Randy Bush wrote:
>> > foo.on.you:/usr/local/share# find . -type d -perm 777
>> > ./emacs/22.3/etc/tree-widget
>> > ./emacs/22.3/etc/tree-widget/folder
>> > ./emacs/22.3/etc/tree-widget/default
>> > ./emacs/22.3/etc/e
>> > ./emacs/22.3/etc/images
>> > ./emacs/22.3/etc/images/low-color
>> > ./emacs/22.3/etc/images/gnus
>> > ./emacs/22.3/etc/images/icons
>> > ./emacs/22.3/etc/images/gud
>> > ./emacs/22.3/etc/images/smilies
>> > ./emacs/22.3/etc/images/mail
>> > ./emacs/22.3/etc/images/ezimage
>> > ./emacs/22.3/lisp
>> > ./emacs/22.3/lisp/net
>> > ./emacs/22.3/lisp/progmodes
>> > ./emacs/22.3/lisp/calc
>> > ./emacs/22.3/lisp/emacs-lisp
>> > ./emacs/22.3/lisp/url
>> > ./emacs/22.3/lisp/emulation
>> > ./emacs/22.3/lisp/play
>> > ./emacs/22.3/lisp/erc
>> > ./emacs/22.3/lisp/term
>> > ./emacs/22.3/lisp/obsolete
>> > ./emacs/22.3/lisp/textmodes
>> > ./emacs/22.3/lisp/mail
>> > ./emacs/22.3/lisp/eshell
>> > ./emacs/22.3/lisp/calendar
>> > ./emacs/22.3/lisp/mh-e
>> > ./emacs/22.3/lisp/international
>> > ./emacs/22.3/lisp/gnus
>> > ./emacs/22.3/lisp/language
>> > ./emacs/22.3/leim/ja-dic
>> > ./emacs/22.3/leim/quail
>> > _______________________________________________
>> > freebsd-security at freebsd.org mailing list
>> > http://lists.freebsd.org/mailman/listinfo/freebsd-security
>> > To unsubscribe, send any mail to
>> > "freebsd-security-unsubscribe at freebsd.org"
>>
>> Could this simply be an over promiscuous umask being set when Emacs was
>> installed? ie. umask 000 rather than the default umask 022 for root?
>
> root's umask is 022
>
> randy
>

-- 
Sent from my mobile device


http://buymeahouse.stiw.org/

More information about the freebsd-security mailing list