Bug#352337: [Logcheck-devel] Bug#352337: please tighten permissions on /etc/logcheck
martin f krafft
madduck at debian.org
Tue Feb 14 08:58:49 UTC 2006
also sprach Jamie L. Penman-Smithson <jamie at silverdream.org> [2006.02.13.0042 +0100]:
> >I see no reason why /etc/logcheck should have any more permissions
> >than 0750. Please consider removing access rights from 'other'.
>
> Conversely, I don't see much point in being this restrictive?
For a fact, some packages install 644 files:
root at sarge:/etc/logcheck# ls -la ignore.d.server/ntp-server
-rw-r--r-- 1 root root 45 Aug 26 10:30 ignore.d.server/ntp-server
By making /etc/logcheck 750, those could be protected, and it would
be unnecessary to file bugs against all packages installing 644
logcheck files.
--
.''`. martin f. krafft <madduck at debian.org>
: :' : proud Debian developer and author: http://debiansystem.info
`. `'`
`- Debian - when you have better things to do than fixing a system
Invalid/expired PGP (sub)keys? Use subkeys.pgp.net as keyserver!
"it would be truly surprising
if sound were not capable of suggesting colour,
if colours could not give the idea of the melody,
if sound and colour were not adequate to express ideas."
-- claude debussy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature (GPG/PGP)
Url : http://lists.alioth.debian.org/pipermail/logcheck-devel/attachments/20060214/591d4895/attachment.pgp
More information about the Logcheck-devel
mailing list