From pauls@utdallas.edu  Thu Jun  5 04:31:38 2008
Return-Path: <pauls@utdallas.edu>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 668FC106566C
	for <FreeBSD-gnats-submit@freebsd.org>; Thu,  5 Jun 2008 04:31:38 +0000 (UTC)
	(envelope-from pauls@utdallas.edu)
Received: from mail.stovebolt.com (mail.stovebolt.com [66.221.101.249])
	by mx1.freebsd.org (Postfix) with ESMTP id 47EAA8FC19
	for <FreeBSD-gnats-submit@freebsd.org>; Thu,  5 Jun 2008 04:31:38 +0000 (UTC)
	(envelope-from pauls@utdallas.edu)
Received: from [192.168.2.102] (cpe-24-175-90-48.tx.res.rr.com [24.175.90.48])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.stovebolt.com (Postfix) with ESMTPSA id 67716114391;
	Wed,  4 Jun 2008 23:31:30 -0500 (CDT)
Message-Id: <877E5EAC7E8232664F5D709E@Macintosh.local>
Date: Wed, 04 Jun 2008 23:31:36 -0500
From: Paul Schmehl <pauls@utdallas.edu>
To: Tomoyuki Sakurai <cherry@trombik.org>, FreeBSD-gnats-submit@freebsd.org
In-Reply-To: <20080604041127.EC3C1175C3C@spica.trombik.org>
Subject: Re: [PATCH] security/sguil-server: ${PREFIX}/lib/sguil-server has
 wrong perm, owner and group
References: <20080604041127.EC3C1175C3C@spica.trombik.org>

>Number:         124292
>Category:       ports
>Synopsis:       Re: [PATCH] security/sguil-server: ${PREFIX}/lib/sguil-server has wrong perm, owner and group
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Jun 05 04:40:00 UTC 2008
>Closed-Date:    Thu Jun 05 10:02:59 UTC 2008
>Last-Modified:  Thu Jun 05 10:02:59 UTC 2008
>Originator:     
>Release:        
>Organization:
>Environment:
>Description:
 I don't see what the problem is.  The pkg-install script section to which 
 you refer is optional.  Furthermore, it warns you that it creates user and 
 group accounts named sguil.  The only time the directories will change 
 user and group ownership and perms is if you choose to run the script.  I 
 also fail to see how the perms used create a problem.  If you choose to 
 run sguil as root, there's no problem.  If you choose to run sguil as some 
 other user, then you *should* opt out of that portion of the script. 
 Worst case scenario you simply change the permissions to what you want 
 after you install.
 
 I looked for some guidance in hier (7) to see if there was a required 
 protocol for perms on directories but didn't find one.  Perhaps you can 
 point me to something that says the perms assigned by the script are 
 incorrect.
 
 Paul Schmehl (pauls@utdallas.edu)
 Senior Information Security Analyst
 The University of Texas at Dallas
 http://www.utdallas.edu/ir/security/
 
>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: linimon 
State-Changed-When: Thu Jun 5 10:02:15 UTC 2008 
State-Changed-Why:  
Misfiled followup to ports/124257; content migrated. 


Responsible-Changed-From-To: gnats-admin->freebsd-ports-bugs 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Thu Jun 5 10:02:15 UTC 2008 
Responsible-Changed-Why:  

http://www.freebsd.org/cgi/query-pr.cgi?pr=124292 
>Unformatted:
