[Fedora-packaging] Re: Request to drop %(%{__id_u} -n) in preferred buildroot
Nicolas Mailhot
nicolas.mailhot at laposte.net
Wed Jul 19 22:11:34 UTC 2006
Le mercredi 19 juillet 2006 à 22:32 +0200, Enrico Scholz a écrit :
> an $RPM_BUILD_ROOT with e.g. files for symlink attacks (it should be
> trivial to find the window above with inotify(2)).
>
> Therefore, multi-user environments are not an argument pro %(id -u).
Yes it is.
You are far more likely to share resources like a build system with
friendlies than with attackers. So even if you don't protect against
attackers, protecting against people stomping on each other is a
worthwhile goal.
--
Nicolas Mailhot
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: Ceci est une partie de message num?riquement sign?e
URL: <http://listman.redhat.com/archives/fedora-packaging/attachments/20060720/5734cfcb/attachment.sig>
More information about the Fedora-packaging
mailing list