[pca] pca buglet?

Jeff Wieland wieland at purdue.edu
Fri May 20 22:25:54 CEST 2011


You can use the --xrefdir= option to have it put the xref file
somewhere else, or the --xrefown option to set it to be writable
by the current user only.  I'm not certain why your vulnerability
scanner would care about what's in /var/tmp on a Solaris box...

Jeff Earickson wrote:
> Martin,
>
> My version of pca: 20110329-01.  I've noticed that when pca downloads
> patchdiag.xref to /var/tmp,
> the permissions end up as chmod 666.  Our vulnerability scanner
> complains about this as a world-writable file.
> Any idea how its permissions are set?  Is this something that be fixed in pca?
>
> -----------------------------------
> Jeff A. Earickson, Ph.D
> Senior Server System Administrator
> Colby College,
> 4214 Mayflower Hill,
> Waterville ME, 04901-8842
> 207-859-4214 (fax 207-859-4186)
> Eastern Time Zone, USA
> -----------------------------------
>
>   


-- 
          Jeff Wieland            |         Purdue University
   Network Systems Administrator  |        ITN&S Data Networks
       Voice: (765)496-8234       |        155 S. Grant Street
        FAX: (765)494-6620        |   West Lafayette, IN 47907-2115




More information about the pca mailing list