RFC: Remove write permissions from executables
Miloslav Trmač
mitr at volny.cz
Fri Jan 22 14:56:18 UTC 2010
Chris Adams píše v Pá 22. 01. 2010 v 08:06 -0600:
> Once upon a time, Miloslav TrmaÄ? <mitr at volny.cz> said:
> > We can extend the protection to all executables by a simple addition to
> > redhat-rpm-config (https://bugzilla.redhat.com/show_bug.cgi?id=556897 ).
> > After applying this patch, executable files in all rebuilt packages
> > would not be writeable, most often using mode 0555.
>
> Please don't take away read permission without good reason. I have on
> many occasion grepped for strings in binaries (who touches a particular
> config file for example).
Just to clarify, the proposal is to remove the write permission.
Mirek
More information about the devel
mailing list