[Bill Allombert] > libapache2-svn modules have a rpath pointing to /tmp:
Ah, quite so. I ported the nuke-the-rpaths patch to 1.2.3 but incompletely, intending to finish it when I got a chance (the part with the apache modules was very confusing to me). Extra rpaths are usually quite harmless, but you are right, if a buildd builds things in /tmp, it can be a security problem. Note that this does not affect sarge, which (as far as I can recall) shipped a fully working nuke-the-rpaths patch. I'll take another look as soon as I get a chance. Thanks, Peter
signature.asc
Description: Digital signature
