Re: fetch extension - use local filename from content-disposition header

From: John Baldwin <jhb@xxxxxxxxxxx>
Date: Fri, 30 Dec 2005 08:43:13 -0500

On Friday 30 December 2005 03:44 am, Ádám Szilveszter wrote:
> On Pén, December 30, 2005 6:39 am, Barney Wolff wrote:
> > What does the security officer have to say about that, if true?
>
> You know, there are much bigger problems than that. For example the fact,
> that any vulnerability in fetch(1) or libfetch(3) is a remote root
> compromise candidate on FreeBSD, because the Ports system still insists on
> running it as root by default downloading distfiles from unchecked amd
> potentially unsecure servers all over the Internet. This is the real
> problem, imho. However, when I mentioned this on -security in a thread
> (about trusting trust) all I got back was that it was difficult to make
> sure that all ports build as normal user. Which of course does not explain
> fetching as root at all, but hey.
>
> Regards and Happy New Year,
>
> Sz.

I always build ports as myself and only install them as root. Every once in a
while I run into a port that needs to have stuff from pre-install moved to
pre-su-install, but for the most part if works just fine out of the box.

--
John Baldwin <jhb@xxxxxxxxxxx> <>< http://www.FreeBSD.org/~jhb/
"Power Users Use the Power to Serve" = http://www.FreeBSD.org
_______________________________________________
freebsd-current@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@xxxxxxxxxxx"

References:
- fetch extension - use local filename from content-disposition header
  - From: Martin Cracauer
- Re: fetch extension - use local filename from content-disposition header
  - From: Barney Wolff
- Re: fetch extension - use local filename from content-disposition header
  - From: Ádám Szilveszter

Prev by Date: Re: Cleanup for config(8)
Next by Date: Re: fetch extension - use local filename from content-disposition header
Previous by thread: Re: ports security (was: fetch extension - use local filename from content-disposition header)
Next by thread: Re: fetch extension - use local filename from content-disposition header
Index(es):
- Date
- Thread

Relevant Pages

Re: Destined to be hacked?
... > 1 - What is the risk involved in having a non secure password on a non ... Of course they need to know the login name too. ... Just see to that people can't login as root, this makes it more difficult to ... > people sit there and scan ports just looking for anyone as well. ...
(alt.linux)
Re: Destined to be hacked?
... Of course they need to know the login ... > to try out password for root user. ... >> people sit there and scan ports just looking for anyone as well. ... > installation, if you add php, avoid to use scripts that allows people to ...
(alt.linux)
Re: Ports 0-1023?
... privilege seperation using the Linux capabilities. ... >>Is there any point in needing to be root in order to allocate the low ... >>of ports? ...
(Vuln-Dev)
Re: Ports 0-1023?
... > Is there any point in needing to be root in order to allocate the low ... > simply be used that says a particular UID can allocate a particular range ... > of ports? ... Let's say you don't need to be root anymore. ...
(Vuln-Dev)
Re: Reflections on Trusting Trust
... > Internet as root. ... What about creating a user called "ports" or something more compelling? ... And what about the +INSTALL and +DEINSTALL scripts, ... BTW, those scripts fail, if /tmp is mounted with the noexec ...
(FreeBSD-Security)