Quote:
Originally Posted by eschwartz
Then you are both missing the most basic and fundamental point of this whole entire thread.
This is a porrtable version of calibre. It is meant to be run from a flashdrive, designed for use across computers with different user accounts and G/UIDs.
In such a case, the only solution is world read/write. The alternative is using vfat... which is also world read/write! 
And yes, when you unplug and remount the drive, it easily becomes owned by the attacker, that is chmod 777 as far as I am concerned.
In fact, I committed changes to the calibre-portable.sh launcher, that are designed to ensure all new files created under the scope of that launcher are created 777, in order that you can actually use the darn thing in the first place! Without making fstab rules or patching udisks-daemon to stop mounting vfat as noexec...
In this case, running chmod 777 is merely playing catch-up to my change. |
Don't worry - you got the idea
It is meant to be portable
There is always some guy in Linux forum that will spread doom and gloom.
We are grown up adults having fun.
Go away doom mongers