From 054fbf620064012a74c709146b462923734b21c6 Mon Sep 17 00:00:00 2001 From: Charlie Fenton Date: Wed, 2 Sep 2009 02:32:30 +0000 Subject: [PATCH] Mac Sandbox: Security fixes for Mac OS 10.6 Snow Leopard svn path=/trunk/boinc/; revision=18981 --- checkin_notes | 3 +++ mac_build/Mac_SA_Insecure.sh | 5 +++-- mac_build/Mac_SA_Secure.sh | 4 ++-- 3 files changed, 8 insertions(+), 4 deletions(-) diff --git a/checkin_notes b/checkin_notes index 5a6250c9a3..aa11c68240 100644 --- a/checkin_notes +++ b/checkin_notes @@ -7435,5 +7435,8 @@ Charlie 1 Sept 2009 BOINCGUIApp.cpp mac/ SetupSecurity.cpp + mac_build/ + Mac_SA_Insecure.sh + Mac_SA_Secure.sh mac_installer/ PostInstall.cpp diff --git a/mac_build/Mac_SA_Insecure.sh b/mac_build/Mac_SA_Insecure.sh index 7ee3e4e594..4c297df4d6 100755 --- a/mac_build/Mac_SA_Insecure.sh +++ b/mac_build/Mac_SA_Insecure.sh @@ -41,7 +41,8 @@ # the --insecure option. # NOTE: running BOINC with security disabled is not recommended. # -# Last updated 10/2/07 +# Last updated 9/1/09 for BOINC version 6.8.17 and 6.10.3 +# WARNING: do not use this script with older versions of BOINC function remove_boinc_users() { name=$(dscl . search /users RecordName boinc_master | cut -f1 -s) @@ -109,7 +110,7 @@ fi if [ -x /Applications/BOINCManager.app/Contents/MacOS/BOINCManager ] ; then chown ${user}:${group} /Applications/BOINCManager.app/Contents/MacOS/BOINCManager - chmod -R u+r-w+s,g+r-ws,o+r-ws /Applications/BOINCManager.app/Contents/MacOS/BOINCManager + chmod -R u+r-ws,g+r-ws,o+r-ws /Applications/BOINCManager.app/Contents/MacOS/BOINCManager fi if [ -x /Applications/BOINCManager.app/Contents/Resources/boinc ] ; then diff --git a/mac_build/Mac_SA_Secure.sh b/mac_build/Mac_SA_Secure.sh index 5605519048..8719fa7029 100755 --- a/mac_build/Mac_SA_Secure.sh +++ b/mac_build/Mac_SA_Secure.sh @@ -62,7 +62,7 @@ # sudo dscl . -delete /groups/boinc_master users mary # -# Last updated 4/2/09 for BOINC version 6.7 +# Last updated 9/1/09 for BOINC version 6.8.17 and 6.10.3 # WARNING: do not use this script with older versions of BOINC function make_boinc_user() { @@ -223,7 +223,7 @@ if [ -f ss_config.xml ] ; then fi if [ -x /Applications/BOINCManager.app/Contents/MacOS/BOINCManager ] ; then - set_perm /Applications/BOINCManager.app/Contents/MacOS/BOINCManager boinc_master boinc_master 2555 + set_perm /Applications/BOINCManager.app/Contents/MacOS/BOINCManager boinc_master boinc_master 0555 fi if [ -x /Applications/BOINCManager.app/Contents/Resources/boinc ] ; then