[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: bashbug install mode
From: |
Michał Górny |
Subject: |
Re: bashbug install mode |
Date: |
Mon, 28 Nov 2016 23:50:33 +0100 |
On Mon, 28 Nov 2016 13:38:31 -0800
Chet Ramey <chet.ramey@case.edu> wrote:
> On 11/28/16 1:35 PM, Michał Górny wrote:
>
> > I don't think they do that anymore. Today, the de facto recommendation
> > from GNU would be automake, which installs all executables 0755. Here bash
> > stands out as doing something possibly wrong.
>
> I disagree that it's wrong, per se. Certainly there's no real compelling
> reason to change it now. Who wants to be able to edit a shell script in
> situ after it's been installed?
The obvious answer would be: someone trying to debug it. Not saying
that I ever did that, just answering the question.
I don't have a convincing argument for you. In my case, it was caught
because I was checking packages for accidental wrong permissions --
and it triggered my check as I didn't predict anyone would install
files non-writable by their owner.
That doesn't change the fact that I'd prefer to see this changed, if
only to make me sleep better seeing all files in /usr/bin having
the same permissions, in a pretty row of 'ls -l' ;-P.
--
Best regards,
Michał Górny
<http://dev.gentoo.org/~mgorny/>
pgpHCBfEdxfZf.pgp
Description: OpenPGP digital signature