Hi Alan,<div><br></div><div>Thanks for the alert. We shall soon address the issue in the best possible way.<br><br><div class="gmail_quote">On Thu, Oct 27, 2011 at 12:50 PM, Alan Lord (News) <span dir="ltr"><<a href="mailto:alanslists@gmail.com">alanslists@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">On 26/10/11 19:59, Asha wrote:<br>
<br>
> *vtiger CRM 5.3.0 RC downloads:*<br>
> vtiger CRM Source – vtiger CRM 5.3.0 – RC.tar.gz<br>
<br>
I just extracted the RC tarball and all files *and* directories are<br>
rwxrwxrwx.<br>
<br>
This is very poor security practice - there are very few files (if any)<br>
that will need to be writeable or executable, especially by "other", and<br>
only a couple of directories need to be writeable.<br>
<br>
Unless this is me (I just did the same command I always do: tar xvf<br>
file.tar.gz) this needs to be fixed before release.<br>
<br>
Cheers<br>
<br>
Al<br>
<font color="#888888"><br>
--<br>
The Open Learning Centre<br>
<a href="http://www.theopenlearningcentre.com" target="_blank">http://www.theopenlearningcentre.com</a><br>
<br>
_______________________________________________<br>
<a href="http://www.vtiger.com/" target="_blank">http://www.vtiger.com/</a><br>
</font></blockquote></div><br><br clear="all"><div><br></div>-- <br>Regards,<br>Asha<br>vtiger Team<br><br><b>Connect with us on: </b><a href="http://twitter.com/#%21/vtigercrm" target="_blank">Twitter</a> <b>I</b> <a href="http://www.facebook.com/pages/vtiger/226866697333578?sk=wall" target="_blank">Facebook</a> <b>I</b> <a href="http://blog.vtiger.com/" target="_blank">Blog</a><b> I</b> <a href="http://wiki.vtiger.com/index.php/Main_Page" target="_blank">Wiki</a> <b>I </b><a href="http://forums.vtiger.com/" target="_blank">Forums </a><b>I</b> <a href="http://vtiger.com/" target="_blank">Website</a><br>
<br>
</div>