[Pkg-openldap-devel] Bug#597704: On upgrade to 2.4.23-5 an rm -f /* has been executed and crashed my whole system!
Bernd Zeimetz
bernd at bzed.de
Wed Sep 22 12:25:19 UTC 2010
On 09/22/2010 01:41 PM, Matthijs Mohlmann wrote:
> Can you supply a configuration file (/etc/ldap/slapd.conf) ?
> Make sure there is no confidential information in that file.
Although it might make sense to check *why* the variable was empty, you need to
make sure never to call something like rm $foo/* when you're not sure that $foo
is not empty. You should add an extra check here to ensure this. Also you should
check if the slapd user actually owns the files (or at least the directory)
before deleting them.
--
Bernd Zeimetz Debian GNU/Linux Developer
http://bzed.de http://www.debian.org
GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F
More information about the Pkg-openldap-devel
mailing list