[pca] pca buglet?

Rajiv Gunja opn.src.rocks at gmail.com
Sun May 22 00:56:06 CEST 2011


+ check umask settings for the ID which is downloading the xref.

-GGR
--
Rajiv G Gunja
Blog: http://ossrocks.blogspot.com


On Fri, May 20, 2011 at 16:25, Jeff Wieland <wieland at purdue.edu> wrote:

> You can use the --xrefdir= option to have it put the xref file
> somewhere else, or the --xrefown option to set it to be writable
> by the current user only.  I'm not certain why your vulnerability
> scanner would care about what's in /var/tmp on a Solaris box...
>
>
> Jeff Earickson wrote:
>
>> Martin,
>>
>> My version of pca: 20110329-01.  I've noticed that when pca downloads
>> patchdiag.xref to /var/tmp,
>> the permissions end up as chmod 666.  Our vulnerability scanner
>> complains about this as a world-writable file.
>> Any idea how its permissions are set?  Is this something that be fixed in
>> pca?
>>
>> -----------------------------------
>> Jeff A. Earickson, Ph.D
>> Senior Server System Administrator
>> Colby College,
>> 4214 Mayflower Hill,
>> Waterville ME, 04901-8842
>> 207-859-4214 (fax 207-859-4186)
>> Eastern Time Zone, USA
>> -----------------------------------
>>
>>
>>
>
>
> --
>         Jeff Wieland            |         Purdue University
>  Network Systems Administrator  |        ITN&S Data Networks
>      Voice: (765)496-8234       |        155 S. Grant Street
>       FAX: (765)494-6620        |   West Lafayette, IN 47907-2115
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.univie.ac.at/pipermail/pca/attachments/20110521/d8ee5c77/attachment.html>


More information about the pca mailing list