diff options
| author | Michael Gmelin <grembo@FreeBSD.org> | 2024-11-23 17:37:49 +0000 |
|---|---|---|
| committer | Michael Gmelin <grembo@FreeBSD.org> | 2024-11-23 19:15:34 +0100 |
| commit | c4139815d8f3472317e6461da7f2589cc5a7ccbf (patch) | |
| tree | b57f2e3b8ca6be1003205164cb9b80b4f8f79db4 /sysutils/iocage/files/patch-setup.py | |
| parent | www/unit-wasm: write permission is required (diff) | |
sysutils/iocage: Add hardening measures on untar
This adds hardening measures while untaring archives fetched
over the network (including FreeBSD tarballs and iocage plugins),
as implemented by TrueNAS.
This reduces the impact of intentionally malicious or accidentally
broken archives.
Please note that users are still advised to only fetch from
trusted sources and make use of TLS to prevent MITM attacks.
While there, add patch to store man pages in the correct location.
Obtained from: https://github.com/truenas/iocage/pull/358
Diffstat (limited to 'sysutils/iocage/files/patch-setup.py')
| -rw-r--r-- | sysutils/iocage/files/patch-setup.py | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/sysutils/iocage/files/patch-setup.py b/sysutils/iocage/files/patch-setup.py new file mode 100644 index 000000000000..cad071146d2d --- /dev/null +++ b/sysutils/iocage/files/patch-setup.py @@ -0,0 +1,15 @@ +--- setup.py.orig 2024-09-20 06:45:27 UTC ++++ setup.py +@@ -30,10 +30,10 @@ from setuptools import find_packages, setup + + if os.path.isdir("/".join([sys.prefix, "etc/init.d"])): + _data = [('etc/init.d', ['rc.d/iocage']), +- ('man/man8', ['iocage.8.gz'])] ++ ('share/man/man8', ['iocage.8.gz'])] + else: + _data = [('etc/rc.d', ['rc.d/iocage']), +- ('man/man8', ['iocage.8.gz'])] ++ ('share/man/man8', ['iocage.8.gz'])] + + if os.path.isdir("/".join([sys.prefix, "share/zsh/site-functions/"])): + _data.append(('share/zsh/site-functions', ['zsh-completion/_iocage'])) |