Full Disclosure mailing list archives

Re: Linux kernel source archive vulnerable

From: Joe Feise <jfeise () feise com>
Date: Mon, 11 Sep 2006 17:28:43 -0700

coderpunk writes:

The standard recommendation is to never compile

the kernel as root.


Which obviously doesn't help you when a non-root user edits the
kernel, you compile it as 'jerry' but still have to install it as
'root'. You're still hosed.


Geez, of course not. Unpacking the kernel as non-root honors umask.
Problem solved.

It would help to 'info tar' before posting...

-Joe

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

tar alternative, (continued)
- - - tar alternative Tim (Sep 08)
    - Re: tar alternative Cristi Mitrana (Sep 08)
    - Re: Re: tar alternative Tim (Sep 09)
    - Re: Re: tar alternative darren kirby (Sep 09)
    - Re: Re: tar alternative Tim (Sep 09)
    - Re: tar alternative Aaron Gray (Sep 15)
    - Re: tar alternative Tim (Sep 20)
    - Re: tar alternative Jon Hart (Sep 20)
    - Re: tar alternative Tonnerre Lombard (Sep 20)
  - Re: Linux kernel source archive vulnerable coderpunk (Sep 11)
    - Re: Linux kernel source archive vulnerable Joe Feise (Sep 11)
    - Re: Linux kernel source archive vulnerable coderpunk (Sep 12)
    - Re: Re: Linux kernel source archive vulnerable Chris Umphress (Sep 12)
    - Re: Linux kernel source archive vulnerable Schanulleke (Sep 15)
    - Re: Linux kernel source archive vulnerable Troy Cregger (Sep 22)