[Gutsy] attempt to create archive in dir without writing permissions creates archive in user home without notification
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| file-roller (Ubuntu) |
Invalid
|
Low
|
Ubuntu Desktop Bugs | ||
Bug Description
Binary package hint: file-roller
Concerns: Ubuntu Gutsy Gibbon, file-roller 2.20.1-0ubuntu1
I found a "--" tarball with root owned files in my user home directory. The origin of this file was initially unclear but I managed to reproduce this file as follows:
- as a normal user open nautilus and go to /root
- select some files (not directories) for which the user has reading rights (rw-r--r--)
- right click to create an archive in the same directory
Trying to create an archive in the directory where the user doesn't have writing rights will fail without an error message.
Here's the problem: Without any notification, a tarball named "--" (without extension), which includes the root-owned files, is now placed in the home directory of the user who attempted to create the archive in the root directory. Any new attempt will append files to this archive.
File-roller shouldn't create an archive in any other location than the one specified by the user.
| Christoph Langner (chrissss) wrote | #1 |
| Changed in file-roller: | |
| status: | New → Confirmed |
| Sebastien Bacher (seb128) wrote | #2 |
| Changed in file-roller: | |
| assignee: | nobody → desktop-bugs |
| importance: | Undecided → Low |
| status: | Confirmed → Incomplete |
| Pedro Villavicencio (pedro) wrote | #3 |
| Changed in file-roller: | |
| status: | Incomplete → Invalid |
I can confirm this except the fact, that i don't get an error message, when trying to create an archive in e.g. /root. But i also find a tarball called "--" inside $HOME after that attempt.