Rejecting brother-lpr-drivers-*
Martin Pitt
martin.pitt at ubuntu.com
Fri Feb 22 09:02:09 GMT 2008
Hi Jeremy,
I have to reject brother-lpr-drivers-{bh7,extra,ac}, since debian/rules does
chmod a+w debian/brother-lpr-drivers-bh7/usr/local/Brother/*/*/inf/brdcp*
chmod a+w debian/brother-lpr-drivers-bh7/usr/local/Brother/*/*/inf/brfax*
chmod a+w debian/brother-lpr-drivers-bh7/usr/local/Brother/*/*/inf/brmfc*
chmod a+w debian/brother-lpr-drivers-bh7/usr/local/Brother/*/*/inf
This creates world-writeable files in /usr, which is a potential
security hole and against standard practice. The files should probably
be 0644.
Please reupload with this fix.
This might also apply to the three packages I already accepted, sorry.
Can you please prepare a followup upload to fix those as well?
Thanks,
Martin
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntu.com
Debian Developer http://www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/ubuntu-archive/attachments/20080222/7fb80c0d/attachment.pgp
More information about the ubuntu-archive
mailing list