Compiling gcc TYPO CORRECTIOn

Dan Osterrath do3 at mail.inf.tu-dresden.de
Fri May 23 07:56:11 PDT 2003


Am Freitag, 23. Mai 2003 16:45 schrieb Edward Pinski:
> > David wrote:
> > > Even in the older gcc -3.2.2 there are files with 664, 777, 775 and 754
> > > permissions.
> > > Shouldn't the 664 permissions be changed to 644
> > > and the 777, 775, 754 permissions be set to 775
> >
> > The 777, 775, 754 should be set to 755
>
> Uhm, why would it matter?  I mean really, why would it matter?  It's
> not like the second permission bit is going to affect things.

I agree that 754 is quite harmless. But 777 and 775 is realy bad as anyone on 
the system (at files with 777) or everyone with the same group (at those with 
775) could overwrite/modify these files before the get compiled or installed.

The admin does a "./configure && make && make install" and in the meanwhile a 
user modifies the sources in the background. Nice feature to introduce a 
trojan horse.

-- 
----------------------------------------------------------------------
%> ln -s /dev/null /dev/brain
%> ln -s /dev/urandom /dev/world
%> dd if=/dev/world of=/dev/brain
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: signature
URL: <http://lists.linuxfromscratch.org/pipermail/lfs-dev/attachments/20030523/c17661aa/attachment.sig>


More information about the lfs-dev mailing list