Re: Bug#57740: Security: Many files are kept a+w
Sven LUTHER (luther@dpt-info.u-strasbg.fr) wrote:
> Ok, so where can i put example programs so that users can play with it quickly
> without having to copy them over to their place. Do we need a /home/examples
> or somethign such place, and symlink it from /usr/share/doc ?
(from the fhs) no package should ever try to touch /home, and /usr should
work perfectly if mounted read-only.
>
> I think i am not the only one who is having this kind of needs, imagine, i
> install this package here ta university, and 200 students copy the files over
> to their place, compile them and install them. Sure the files are quite small,
> but still.
certianly, everyone benefits from having examples distributed with packages,
look at how many packages have such a dir: (on a medium sized potato system)
jake@fantasia:~$ find /usr/share/doc/ -type d -name examples | wc -l
50
having these directories world writeable means there are more than 50 places
in the system where you might find a trojan. not a pleasant idea. also, if
/usr on a different partition (i believe) the administrator would have to
configure quotas for /usr too. not to mention possible loss of data during
upgrade. it would become much more than a hassle than having read-only
examples that people could copy.
>
> Friendly,
>
> Sven LUTHER
>
>
> --
> To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
--
(jacob kuntz) jpk@cape.com jake@{megabite,underworld}.net
(megabite systems) "think free speech, not free beer." (gnu foundataion)
Reply to: