updatedb?
RW
rwmaillists at googlemail.com
Tue Dec 18 21:40:29 UTC 2012
On Tue, 18 Dec 2012 21:01:33 +0000 (UTC)
Walter Hurry wrote:
> $ sudo /usr/libexec/locate.updatedb
> >>> WARNING
> >>> Executing updatedb as root. This WILL reveal all filenames
> >>> on your machine to all login users, which is a security risk.
> $
>
> Why is it a "security risk"? Security through obscurity? Really? In
> this day and age?
>
> Or am I missing something?
If permissions have been set to prevent other users reading filenames
then obviously leaking file names is security issue.
More information about the freebsd-questions
mailing list