Make locate.updatedb tell about the security risk when it is run as root.

2002-06-19 19:22:18 +00:00 · 2002-06-19 19:22:18 +00:00 · 0f798c48ed
commit 0f798c48ed
parent 0c49c1f970
1 changed files with 5 additions and 0 deletions
--- a/usr.bin/locate/locate/updatedb.sh
+++ b/usr.bin/locate/locate/updatedb.sh
@ -28,6 +28,11 @@
 #
 # $FreeBSD$

+if [ "$(id -u)" = "0" ]; then
+	echo ">>> WARNING" 1>&2
+	echo ">>> Executing updatedb as root.  This WILL reveal all filenames" 1>&2
+	echo ">>> on your machine to all login users, which is a security risk." 1>&2
+fi
 : ${LOCATE_CONFIG="/etc/locate.rc"}
 if [ -f "$LOCATE_CONFIG" -a -r "$LOCATE_CONFIG" ]; then
       . $LOCATE_CONFIG