homebrew - 检测到 Big Sur 潜在提权漏洞的乘客

问题描述

在 Big Sur上Passenger使用的新安装。由于内部安装homebrew的新位置（我来自一个El Capitan盒子），不高兴，因为我可以从设置的权限中看到它。错误：homebrew/opt/homebrewPassenger

2021/03/19 09:22:16 [warn] 85#0: 1024 worker_connections exceed open file resource limit: 256
[ N 2021-03-19 09:22:16.2962 31353/T1 age/Wat/WatchdogMain.cpp:1373 ]: Starting Passenger watchdog...
[ N 2021-03-19 09:22:16.3519 31355/T1 age/Cor/CoreMain.cpp:1340 ]: Starting Passenger core...
[ N 2021-03-19 09:22:16.3521 31355/T1 age/Cor/CoreMain.cpp:256 ]: Passenger core running in multi-application mode.
[ W 2021-03-19 09:22:16.3944 31355/T1 age/Cor/CoreMain.cpp:1007 ]: WARNING: potential privilege escalation vulnerability detected. Phusion Passenger is running as root, and part(s) of the Passenger root path (/opt/homebrew/opt/passenger/libexec/src/ruby_supportlib/phusion_passenger/locations.ini) can be changed by non-root user(s):

 - /opt/homebrew/opt/passenger/libexec/src/ruby_supportlib/phusion_passenger/locations.ini is not secure: it can be modified by user rich
 - /opt/homebrew/opt/passenger/libexec/src/ruby_supportlib/phusion_passenger is not secure: it can be modified by user rich
 - /opt/homebrew/opt/passenger/libexec/src/ruby_supportlib is not secure: it can be modified by user rich
 - /opt/homebrew/opt/passenger/libexec/src is not secure: it can be modified by user rich
 - /opt/homebrew/opt/passenger/libexec is not secure: it can be modified by user rich
 - /opt/homebrew/opt/passenger is not secure: it can be modified by user rich
 - /opt/homebrew/opt is not secure: it can be modified by user rich
 - /opt/homebrew is not secure: it can be modified by user rich

这是一种变暖，但我不确定它是跛行还是功能齐全。

我应该担心吗？我应该改变什么吗？这会消失吗？似乎它是这样设计的，但我看到了警告。

任何见解表示赞赏。谢谢你。

标签： homebrewpassengermacos-big-sur