Re: woody BUG upgrade - miesto symlinku nespravi nic

To Debian CZ/SK project discussion list <czdebian-l zavinac debian bod cz>
From "AntiTrust2 (gmail)" <antitrust2 zavinac gmail bod com>
Date Sat, 5 Feb 2005 13:39:56 +0100
Domainkey-signature a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=txSSG0pQyjGZKszNkS7WNhU/V16VG1Wztks/0bE308YbrMEM9Vr49vf6Pf4UkvXUWKpoZDey62TpSjwb1g2E2P0go2UAkjYMBFIArNJEwBSIn+LpEbJ/RCioOKn1vWVfYGGANbRRcOhNbs6zH6FIyqDFIcGRrgrUiXH4EdrkNCw= 
On Sat, 05 Feb 2005 10:33:33 +0100, Jan Korbel <debian zavinac teptin bod net> 
wrote:
> cau.
> 
> kterej link konkretne mas na mysli? nemyslim si ze by mel linkovat
> /usr/lib/ssl --> /etc/ssl jak pises, ale to bude mozna tim ze se
> nepovazuju za odbornika na ssl :)

Moving lib from /usr/lib/ssl to /etc/ssl
Ak presuva LIB inde, tak povodne miesto (DIR) by mal IMHO zmazat,
alebo symlinkovat.

> 
> <rejp>neni ta bezpecnost spis ohrozena neaktualizovanym systemem?</rejp>

Ano, ale ja sa tu bavim o "ohrozeni tisicov servrov"!  :)

A ide skor o BUG ako security, ale predsa ...

> 
> H.
> 
> woody s libssl0.9.6:
> 
> /etc/ssl/
> `-- lib
> 1 directory, 0 files
> 
> /usr/lib/ssl
> `-- misc
>      `-- CA.sh.old
> 1 directory, 1 file
> 
> (pri instalaci openssl se mimo jine snazi o:
> Moving lib from /usr/lib/ssl to /etc/ssl)
> 
> a vysledek (woody s libssl0.9.6 a openssl):
> 
> /usr/lib/ssl
> |-- certs -> /etc/ssl/certs
> |-- lib
> |-- misc
> |   |-- CA.pl
> |   |-- CA.sh
> |   |-- CA.sh.old
> |   |-- c_hash
> |   |-- c_info
> |   |-- c_issuer
> |   |-- c_name
> |   `-- der_chop
> |-- openssl.cnf -> /etc/ssl/openssl.cnf
> `-- private -> /etc/ssl/private
> 4 directories, 9 files
> 
> /etc/ssl
> |-- certs
> |-- lib
> |-- openssl.cnf
> `-- private
> 3 directories, 1 file
> 
> 
> AntiTrust2 wrote:
> > V com IMHO spociva BUG:
> > Z
> > /usr/lib/ssl
> > malo spravit symlink na
> > /etc/ssl
> > a nespravilo.
> > Takze ak "nieco" tam nahadze subory, moze "cosi ine"
> > blbnut/nefungovat/moze byt ohrozena bezpecnost.
> >
> > Avsak nakolko su tu odbornici, tak sa radsej pred reportom spytam.
> >
> > Mylim sa?
> > V com?
> 
> 
> ________________________________________________
> CZdebian-l maillist  -  CZdebian-l zavinac debian bod cz
> http://www.debian.cz/mailman/listinfo/czdebian-l
> E-mail (un)subscriptions: czdebian-l-request zavinac debian bod cz
> 
> 


-- 
AT aka antitrust2-AT-gmail.com
Ak xces pozvanku (invitation) napis mi + dovody. Rad helfnem.
Partial thread listing: