emacs installs a lot of 777 directories
Daniel Marsh
jahilliya at gmail.com
Sun Mar 8 08:52:05 PDT 2009
Sorry, but when was emaca installed?
If you deinstall and reinstall after verifying the suspect directories
are deleted, and roots umask is 022 do you get the same problem?
Are you doing make install as a user and letting the port escalate
privaleges? Or do you login , sudo or su to root?
Login via tty as root, check umask and install port
Make install as user will su to root but you need to check the users umask
Sudo will use the users umask not root
su is the same as sudo
> su - root
This will work as it simulates a login and sets roots environment,
including the umask
Umask is set during login, most privilege escalation commands arth the
euid to root but not the uid, they also don't run through the login
process (ie ~/.login ) which sets up your environment
Regards
Daniel
On 3/8/09, Randy Bush <randy at psg.com> wrote:
> At Fri, 06 Mar 2009 13:04:24 +0900,
> Daniel Marsh <jahilliya at gmail.com> wrote:
>>
>> On Fri, 2009-03-06 at 11:15 +0900, Randy Bush wrote:
>> > foo.on.you:/usr/local/share# find . -type d -perm 777
>> > ./emacs/22.3/etc/tree-widget
>> > ./emacs/22.3/etc/tree-widget/folder
>> > ./emacs/22.3/etc/tree-widget/default
>> > ./emacs/22.3/etc/e
>> > ./emacs/22.3/etc/images
>> > ./emacs/22.3/etc/images/low-color
>> > ./emacs/22.3/etc/images/gnus
>> > ./emacs/22.3/etc/images/icons
>> > ./emacs/22.3/etc/images/gud
>> > ./emacs/22.3/etc/images/smilies
>> > ./emacs/22.3/etc/images/mail
>> > ./emacs/22.3/etc/images/ezimage
>> > ./emacs/22.3/lisp
>> > ./emacs/22.3/lisp/net
>> > ./emacs/22.3/lisp/progmodes
>> > ./emacs/22.3/lisp/calc
>> > ./emacs/22.3/lisp/emacs-lisp
>> > ./emacs/22.3/lisp/url
>> > ./emacs/22.3/lisp/emulation
>> > ./emacs/22.3/lisp/play
>> > ./emacs/22.3/lisp/erc
>> > ./emacs/22.3/lisp/term
>> > ./emacs/22.3/lisp/obsolete
>> > ./emacs/22.3/lisp/textmodes
>> > ./emacs/22.3/lisp/mail
>> > ./emacs/22.3/lisp/eshell
>> > ./emacs/22.3/lisp/calendar
>> > ./emacs/22.3/lisp/mh-e
>> > ./emacs/22.3/lisp/international
>> > ./emacs/22.3/lisp/gnus
>> > ./emacs/22.3/lisp/language
>> > ./emacs/22.3/leim/ja-dic
>> > ./emacs/22.3/leim/quail
>> > _______________________________________________
>> > freebsd-security at freebsd.org mailing list
>> > http://lists.freebsd.org/mailman/listinfo/freebsd-security
>> > To unsubscribe, send any mail to
>> > "freebsd-security-unsubscribe at freebsd.org"
>>
>> Could this simply be an over promiscuous umask being set when Emacs was
>> installed? ie. umask 000 rather than the default umask 022 for root?
>
> root's umask is 022
>
> randy
>
--
Sent from my mobile device
http://buymeahouse.stiw.org/
More information about the freebsd-security
mailing list