• Michael Shigorin's avatar
    build-vm: try system tar2fs first · f293239d
    Michael Shigorin authored
    It's at least removing the very obvious user->root
    attack through (maliciously) modifying bin/tar2fs
    and waiting for it to be run; if mkimage-profiles
    is installed system-wide as a package, the script
    from /usr/share/mkimage-profiles will be tried so
    those willing to allow vm/* build to themselves
    can provide for a passwordless sudo (as described
    in doc/vm.txt) to run a root-only writable script,
    not user-writable.
    
    Still not perfect but a step away from the abyss.
    f293239d
Name
Last commit
Last update
.gear Loading commit data...
bin Loading commit data...
conf.d Loading commit data...
doc Loading commit data...
features.in Loading commit data...
image.in Loading commit data...
lib Loading commit data...
pkg.in Loading commit data...
sub.in Loading commit data...
.gitignore Loading commit data...
COPYING Loading commit data...
Makefile Loading commit data...
QUICKSTART Loading commit data...
README Loading commit data...
main.mk Loading commit data...
reports.mk Loading commit data...