New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Binary installed world writeable (version 1.49.8), security problem #1
Comments
The port installed file that are world writeable. Fix this problem. It is also reported upstream: ayushn21/dartsass-ruby#1
Hey @mfechner sorry it took me so long to get to this. I see the following access for each file in the repo: Maybe it's something weird with your specific installation? As far as I can tell the executables in the git repo have the right permissions. This isn't my area of expertise though so happy to follow your lead on this. Please try to clone the repo and verify the permissions on the files. |
Hi @ayushn21 you can see the problem like this: mkdir t2
cd t2
wget https://rubygems.org/downloads/dartsass-1.49.8.gem
tar xzvf dartsass-1.49.8.gem
tar tvf data.tar.gz
|
Hi,
installing the module, installs the following file with worl writeable permission:
Could you please install them not world writeable so with permission 755 instead of 757.
The text was updated successfully, but these errors were encountered: