* [gentoo-dev] addwrite abuse
@ 2004-05-09 7:05 Joshua Brindle
2004-05-10 19:24 ` [gentoo-dev] net-misc/rdate Michael Sterrett -Mr. Bones.-
0 siblings, 1 reply; 2+ messages in thread
From: Joshua Brindle @ 2004-05-09 7:05 UTC (permalink / raw
To: gentoo-dev
I grepped through portage today and it appears that there are a large
number of ebuilds that abuse addwrite in bad (potentially dangerous) ways.
I'll spare the list at this time and ask that anyone maintaining such an
ebuild *please* try to fix it (patch, bug upstream, etc) so that it
isn't required. This is both for the safety of gentoo users and for
security.
Pebenito has also started work on an SELinux based sandbox (does the
same thing as sandbox, just limits it using SELinux domains for SELinux
users). Since it wouldn't have the ability to do these arbitrary rule
additions all these ebuilds would fail.
Thanks
Joshua Brindle
--
gentoo-dev@gentoo.org mailing list
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2004-05-10 19:24 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-05-09 7:05 [gentoo-dev] addwrite abuse Joshua Brindle
2004-05-10 19:24 ` [gentoo-dev] net-misc/rdate Michael Sterrett -Mr. Bones.-
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox