On Sat, Nov 22, 2014 at 12:39:44PM +0500, Andrey Rahmatullin wrote:
> Control: tags -1 + patch
>
> On Thu, Nov 12, 2009 at 04:31:52PM -0800, Russ Allbery wrote:
> > Lintian has a tag:
> >
> > Tag: symlink-has-too-many-up-segments
> > Severity: serious
> > Certainty: certain
> > Ref: policy 10.5
> > Info: The symlink references a directory beyond the root directory "/".
> >
> > for symlinks that contain so many ../ segments that they traverse above
> > the root of the file system. This tag is currently used by ftpmaster to
> > reject uploads, but this behavior is not explicitly prohibited by Policy
> > (although it violates both shoulds in 10.5).
>
> Here is a patch:
>
> diff --git a/policy.sgml b/policy.sgml
> index 6eac491..a582f60 100644
> --- a/policy.sgml
> +++ b/policy.sgml
> @@ -8892,6 +8892,7 @@ fname () {
> would point to <file>/srv/run</file> rather than the intended
> target.
> </footnote>
> + Symbolic links must not traverse above the root directory.
> </p>
>
> <p>Seconded. (If I may give you a tip, when sending policy patch, consider using more context lines (e.g. diff -u6)), this makes the location of the cange more obvious. Cheers, -- Bill. <[email protected]> Imagine a large red swirl here.
signature.asc
Description: Digital signature
