Christoph Martin writes:
A normal user could replace the file with a link to some other file
say /vmlinuz or a file in another user homedir. Then if root or this
other user tries to write ls-R he/she would write to /vmlinuz or
other files.
mktexupd checks for a magic string, and won't
christoph martin writes:
[EMAIL PROTECTED] writes:
Package: tetex-base
Version: 0.9-7
When the user first hits an ungenerated font then permission denied
messages are plentiful... :)
The fonts get generated correctly, but it is a security problem to let
everybody write the ls-R file.
Olaf Weber writes:
christoph martin writes:
[EMAIL PROTECTED] writes:
Package: tetex-base
Version: 0.9-7
When the user first hits an ungenerated font then permission denied
messages are plentiful... :)
The fonts get generated correctly, but it is a security problem to
[EMAIL PROTECTED] writes:
Package: tetex-base
Version: 0.9-7
When the user first hits an ungenerated font then permission denied
messages are plentiful... :)
The fonts get generated correctly, but it is a security problem to let
everybody write the ls-R file.
I believe that the
4 matches
Mail list logo