1 |
On Wed, Dec 14, 2016 at 5:25 PM, Ian Zimmerman <itz@×××××××.net> wrote: |
2 |
> |
3 |
> The true reason the directory bothers me is its permissions, and those |
4 |
> of the files inside. They seem to be created as portage:portage, 0660. |
5 |
> Why is root:root 0640 not good enough for them? Does that mean some |
6 |
> part of portage runs setuid/setgid to the portage user/group? |
7 |
> |
8 |
|
9 |
Yes, this is a security feature (which you can turn off in FEATURES). |
10 |
It reduces the impact of rogue Makefiles and such. |
11 |
|
12 |
-- |
13 |
Rich |