app-admin/tenshi: new revision with tenshi.conf owned by root:root.

The tenshi.conf file was owned by the "tenshi" user in previous revisions. This was open to exploitation because that conf file contains two important settings: 1. The UID that the daemon will run as. 2. The "tail" command to be run on the logfiles. If the "tenshi" user can write to it, he can specify an arbitrary command to be run as an arbitrary UID the next time the daemon is started. Thanks to Brian De Wolf for noticing the problem. Package-Manager: Portage-2.3.6, Repoman-2.3.1
author: Michael Orlitzky <mjo@gentoo.org> 2017-08-30 20:52:49 -0400
committer: Michael Orlitzky <mjo@gentoo.org> 2017-08-30 20:52:49 -0400
commit: 7d56e1b385a02eab7852a3f0677f9f0f63c93df2 (patch)
tree: eb7f3b2da165fedf11a0215ab56a3bc8dff2e6ca /app-admin/tenshi
parent: net-analyzer/nagios: new masked version 4.3.4 for testing. (diff)
download: gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.tar.gz
gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.tar.bz2
gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.zip
1 files changed, 0 insertions, 1 deletions
diff --git a/app-admin/tenshi/tenshi-0.16.ebuild b/app-admin/tenshi/tenshi-0.16-r1.ebuild
index 5ea26981d82e..45059dc892f4 100644
--- a/app-admin/tenshi/tenshi-0.16.ebuild
+++ b/app-admin/tenshi/tenshi-0.16-r1.ebuild
@@ -32,7 +32,6 @@ src_prepare() {
 
 src_install() {
 	emake DESTDIR="${D}" install
-	fowners tenshi:root /etc/tenshi/tenshi.conf
 	doman tenshi.8
 	newinitd tenshi.openrc-init tenshi
author	Michael Orlitzky <mjo@gentoo.org>	2017-08-30 20:52:49 -0400
committer	Michael Orlitzky <mjo@gentoo.org>	2017-08-30 20:52:49 -0400
commit	7d56e1b385a02eab7852a3f0677f9f0f63c93df2 (patch)
tree	eb7f3b2da165fedf11a0215ab56a3bc8dff2e6ca /app-admin/tenshi
parent	net-analyzer/nagios: new masked version 4.3.4 for testing. (diff)
download	gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.tar.gz gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.tar.bz2 gentoo-7d56e1b385a02eab7852a3f0677f9f0f63c93df2.zip