From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <zsh-workers-return-30743-mason-zsh=primenet.com.au@zsh.org>
Received: (qmail 26418 invoked by alias); 23 Oct 2012 16:21:27 -0000
Mailing-List: contact zsh-workers-help@zsh.org; run by ezmlm
Precedence: bulk
X-No-Archive: yes
List-Id: Zsh Workers List <zsh-workers.zsh.org>
List-Post: <mailto:zsh-workers@zsh.org>
List-Help: <mailto:zsh-workers-help@zsh.org>
X-Seq: 30743
Received: (qmail 16830 invoked from network); 23 Oct 2012 16:21:26 -0000
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on f.primenet.com.au
X-Spam-Level: 
X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_LOW
	autolearn=ham version=3.3.2
Received-SPF: neutral (ns1.primenet.com.au: 209.85.219.43 is neither permitted nor denied by SPF record at ntlworld.com)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20120113;
        h=mime-version:x-originating-ip:date:message-id:subject:from:to
         :content-type:x-gm-message-state;
        bh=F826rPG6F4G67ioSdUQh/BYPaz0COqylpqPrgTG21sA=;
        b=TnNWGQ2H4cpu1jkjCI8sC7h9PhaOSrFO6UU7Wl6kC/C03aRfvZNHxzPoVLoT2GZPkT
         KIhOQIO/65tH4ZHIBIvI4j+UXSsOHNZjSoc/ap3Cw4x7v3cqpvEDxYDgvOtv9MImRLel
         S7boUl+wf2gqU1+f1Vj1l3aF2H0C+K8vpLzsm0Us5yBIdwRZrRhPT7yxLgsF9ijbi9I0
         O0WKzvqe3Ked+HQY96y4lrbS2ECwFljoYJOCzBxn6ity66fuI/m8TgG3E+fWmAoFEM9C
         f70LYS4BRgh/c5uIom69R+CH5xT1CBrF8V1pFzsnZjGMDZ8B0iaLCdqE74qVZZMpVcZV
         UJuw==
MIME-Version: 1.0
X-Originating-IP: [80.239.194.50]
Date: Tue, 23 Oct 2012 17:21:20 +0100
Message-ID: <CAECNH1SdoNYU4WbE83q3ZB6JH7WMc31Gnrq-9xxCs8WA8Zu1eg@mail.gmail.com>
Subject: compaudit
From: Peter Stephenson <p.w.stephenson@ntlworld.com>
To: zsh workers <zsh-workers@zsh.org>
Content-Type: text/plain; charset=ISO-8859-1
X-Gm-Message-State: ALoCoQnRFj1TzU/svXobvvJbplyBPgkVlPJ1pT/RObumdIR2QTobGn0O5C5YYzFZF51MPwU/GIpi

Just while it's in my mind...

  zsh compinit: insecure directories and files, run compaudit for list.
  Ignore insecure directories and files and continue [y] or abort compinit [n]?

It occurs to me this is too draconian in the case where the files are
owned by the same user who owns the zsh binary.  At worst we should
report 'zsh installed by unprivileged user x, OK to continue with
compinit?' rather than either ignore all the files or abort completely.
Either you trust the user who installed the shell or you don't.

pws