This is the mail archive of the gcc-patches@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]

Re: Security patch for toplevel configure

To: DJ Delorie <dj at redhat dot com>
Subject: Re: Security patch for toplevel configure
From: "Joseph S. Myers" <jsm28 at cam dot ac dot uk>
Date: Tue, 2 Oct 2001 08:56:12 +0100 (BST)
cc: <gcc-patches at gcc dot gnu dot org>

On Mon, 1 Oct 2001, DJ Delorie wrote:

> > +mkdir ${tmpdir} || exit 1
> 
> Perhaps we should set umask, and chmod this directory also?  If you're
> being security aware, you might as well be paranoid too :-)

Merely by using a global /tmp you're giving out information to an observer
that you're building GCC.  You could set umask and use chmod if you want,
but that change wouldn't need to be made for the release branch.

-- 
Joseph S. Myers
jsm28@cam.ac.uk

References:
- Re: Security patch for toplevel configure
  - From: DJ Delorie

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]