Daenyth Blank wrote: > On Fri, Mar 20, 2009 at 02:58, Gerardo Exequiel Pozzi > <vmlinuz386@xxxxxxxxxxxx> wrote: > >> Hi, >> >> (first: sorry my very bad english) >> >> I see that many executables and libraries in Arch Linux don't take care >> about rpath in package creation step. >> <snip> >> > > Thanks for pointing this out, it's a pretty serious security issue. > Please file a bug on http://bugs.archlinux.org about it. Probably one > of the better solutions would be for makepkg to strip the rpath in the > same step where it uses "strip" to remove debugging info. > > You are welcomed! I created and posted a patch for personal testing purposes to use "chrpath -d" in makepkg. FS#13890 - Packaging creation and rpath issues http://bugs.archlinux.org/task/13890 http://bugs.archlinux.org/task/13890#comment41603 Good Luck! -- Gerardo Exequiel Pozzi ( djgera ) http://www.djgera.com.ar KeyID: 0x1B8C330D Key fingerprint = 0CAA D5D4 CD85 4434 A219 76ED 39AB 221B 1B8C 330D
