Re: [sage-trac] #15387: Problem with path security check if owned by a non-primary group (was: Problem with path security check inside /tmp on OS X)

[sage-trac]

#15387: Problem with path security check if owned by a non-primary group
---------------------------+-------------------------
       Reporter:  nbruin   |        Owner:
           Type:  defect   |       Status:  new
       Priority:  major    |    Milestone:  sage-5.13
      Component:  porting  |   Resolution:
       Keywords:           |    Merged in:
        Authors:           |    Reviewers:
Report Upstream:  N/A      |  Work issues:
         Branch:           |       Commit:
   Dependencies:           |     Stopgaps:
---------------------------+-------------------------
Description changed by nbruin:

Old description:

> Consider the following scenario:
> {{{
> $ cd /tmp
> $ mkdir U
> $ chmod 770 U
> $ cd U
> $ touch test.py
> $ umask 022
> $ sage -t test.py # this fails as expected
> $ umask 002
> $ sage -t test.py # this fails, but succeeds on non-OSX systems or other
> directories besides /tmp
> }}}
> Since OS X always sets the group of files in `/tmp` to `wheel`, this
> doesn' work. See also
> [https://groups.google.com/forum/?hl=en#!topic/sage-support/bmOxR3BgXBI
> sage-support] for a different problem with the sys.path security check.

New description:

 Consider the following scenario:
 {{{
 $ cd /tmp
 $ mkdir U
 $ chmod 770 U
 $ cd U
 $ touch test.py
 $ umask 022
 $ sage -t test.py # this fails as expected
 $ umask 002
 $ sage -t test.py # this fails, but succeeds on non-OSX systems or other
 directories besides /tmp
 }}}
 Since OS X always sets the group of files in `/tmp` to `wheel`, this
 doesn' work.

 This scenario is encountered whenever a user works in a directory that is
 owned and writeable by a group that is not the primary group of the user
 (and hence not the GID of sage when the user runs it).

 See also
 [https://groups.google.com/forum/?hl=en#!topic/sage-support/bmOxR3BgXBI
 sage-support] for a real-life situation where someone encountered that
 scenario.

--

--
Ticket URL: <http://trac.sagemath.org/ticket/15387#comment:5>
Sage <http://www.sagemath.org>
Sage: Creating a Viable Open Source Alternative to Magma, Maple, Mathematica, 
and MATLAB

-- 
You received this message because you are subscribed to the Google Groups 
"sage-trac" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to sage-trac+unsubscr...@googlegroups.com.
To post to this group, send email to sage-trac@googlegroups.com.
Visit this group at http://groups.google.com/group/sage-trac.
For more options, visit https://groups.google.com/groups/opt_out.