Bug 229678

Summary: cad/fritzing: world writable files in /usr/local/share/fritzing
Product: Ports & Packages Reporter: Leon Dietrich <doralitze>
Component: Individual Port(s)Assignee: Rene Ladan <rene>
Status: New ---    
Severity: Affects Many People CC: doralitze, lenzi.sergio, rene, w.schwarzenfeld
Priority: --- Flags: bugzilla: maintainer-feedback? (lenzi.sergio)
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
svn-diff-fritzing none

Description Leon Dietrich 2018-07-10 18:32:58 UTC
The fritzing port includes many files inside the directory /usr/local/share/fritzing and other directories which are world writable and executable and some of them are binaries loaded by other users. This seams to unnecessary and implements a security risk.
Comment 1 Walter Schwarzenfeld freebsd_triage 2019-08-14 13:39:55 UTC
Created attachment 206537 [details]
svn-diff-fritzing
Comment 2 Rene Ladan freebsd_committer 2020-07-23 17:31:06 UTC
The suggested patch does not improve this situation much? It still leaves files group writable (why?). There are some Python files which we probably want to be executable, but the rest can indeed be non-executable.