Subject: Re: mtree/special needs a change for dhclient-script hooks
To: Chris Ross <firstname.lastname@example.org>
From: Luke Mewburn <lukem@NetBSD.org>
Date: 06/15/2007 14:31:34
Content-Type: text/plain; charset=us-ascii
On Mon, Jun 11, 2007 at 09:08:44AM -0400, Chris Ross wrote:
| I have an /etc/dhclient-exit-hooks on one of my hosts, and I am =20
| getting output from /etc/security runs complaining about the =20
| permissions. It's currently mode 0555. I see that /etc/mtree/=20
| special lists that it (and dhclient-enter-hooks) should be 0644 (or =20
| less?). This is an error, I think.
| The man page for dhclient-script(8) notes that these files must be =
| executable to be used. Therefore, I think the etc/mtree/special file =
| should be changed to indicate that this is allowed, if not required.
| Let me know if I've gotten something wrong, but...
The implementation of /sbin/dhclient-script just detects the
presence of the hook files using test -f, rather than testing
for executable status with test -x, so installing the hooks
as 0644 should be sufficient.
I think that the documentation for dhclient-script(8) is a bit unclear.
Have you asked on email@example.com for a definitive answer?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (NetBSD)
-----END PGP SIGNATURE-----