When installing the Certificate Authority (CA) certificates, BLFS
creates a few scripts in /usr/bin, world executable. Is this sound?
Granted, the places they are going to "mess with" aren't world writable,
but wouldn't /usr/sbin, and u+x be more consistent with reasonable
security practices?
--
Paul Rogers
[email protected]
Rogers' Second Law: "Everything you do communicates."
(I do not personally endorse any additions after this line. TANSTAAFL :-)
--
http://www.fastmail.com - Faster than the air-speed velocity of an
unladen european swallow
--
http://lists.linuxfromscratch.org/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
