diff options
| author |   Rick Farina <zerochaos@gentoo.org> | 2015-05-12 16:27:59 +0000 |
|---|---|---|
| committer | Rick Farina <zerochaos@gentoo.org> | 2015-05-12 16:27:59 +0000 |
| commit | ba1adf275ce2d416bf8de0304acf8bbaa1bca74f (patch) | |
| tree | 706fb7307ee54c0f3beb7025782fb141dba34c5c /net-analyzer/nmap | |
| parent | fix build for 9999, rename lua->nse (9999 only for now) bug #529688, fix ambi... (diff) | |
| download | gentoo-2-ba1adf275ce2d416bf8de0304acf8bbaa1bca74f.tar.gz gentoo-2-ba1adf275ce2d416bf8de0304acf8bbaa1bca74f.tar.bz2 gentoo-2-ba1adf275ce2d416bf8de0304acf8bbaa1bca74f.zip | |
add fcaps, bug #492794
(Portage version: 2.2.18/cvs/Linux x86_64, signed Manifest commit with key DD11F94A)
Diffstat (limited to 'net-analyzer/nmap')
| -rw-r--r-- | net-analyzer/nmap/ChangeLog | 5 | ||||
| -rw-r--r-- | net-analyzer/nmap/nmap-9999.ebuild | 18 |
2 files changed, 20 insertions, 3 deletions
diff --git a/net-analyzer/nmap/ChangeLog b/net-analyzer/nmap/ChangeLog index 38a4beb4e63b..1e2141a9391a 100644 --- a/net-analyzer/nmap/ChangeLog +++ b/net-analyzer/nmap/ChangeLog @@ -1,6 +1,9 @@ # ChangeLog for net-analyzer/nmap # Copyright 1999-2015 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-analyzer/nmap/ChangeLog,v 1.335 2015/05/12 16:06:37 zerochaos Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-analyzer/nmap/ChangeLog,v 1.336 2015/05/12 16:27:59 zerochaos Exp $ + + 12 May 2015; Rick Farina <zerochaos@gentoo.org> nmap-9999.ebuild: + add fcaps, bug #492794 12 May 2015; Rick Farina <zerochaos@gentoo.org> +files/nmap-9999-no-FORTIFY_SOURCE.patch, metadata.xml, nmap-6.47-r1.ebuild, diff --git a/net-analyzer/nmap/nmap-9999.ebuild b/net-analyzer/nmap/nmap-9999.ebuild index 5b6fe5f24f5f..ef25202110d6 100644 --- a/net-analyzer/nmap/nmap-9999.ebuild +++ b/net-analyzer/nmap/nmap-9999.ebuild @@ -1,12 +1,12 @@ # Copyright 1999-2015 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-analyzer/nmap/nmap-9999.ebuild,v 1.3 2015/05/12 16:06:37 zerochaos Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-analyzer/nmap/nmap-9999.ebuild,v 1.4 2015/05/12 16:27:59 zerochaos Exp $ EAPI=5 PYTHON_COMPAT=( python2_7 ) PYTHON_REQ_USE="sqlite,xml" -inherit eutils flag-o-matic python-single-r1 toolchain-funcs +inherit eutils fcaps flag-o-matic python-single-r1 toolchain-funcs user MY_P=${P/_beta/BETA} @@ -154,3 +154,17 @@ src_install() { python_optimize fi } + +pkg_postinst() { + # Add group for users allowed to run nmap. + enewgroup nmap + + fcaps -o 0 -g nmap -m 4755 -M 0755 \ + cap_net_raw,cap_net_admin,cap_net_bind_service+eip \ + "${EROOT}"/usr/bin/nmap + + ewarn "NOTE: To run nmap as normal user you have to add yourself to the" + ewarn "nmap group. This security measure ensures that only trusted users" + ewarn "are allowed to run nmap" +} + |