[Pkg-sql-ledger-discussion] Permissions and ownership of /etc/ledgersmb/ledgersmb.conf
Roberto C. Sánchez
roberto at connexer.com
Mon Sep 1 19:15:41 UTC 2008
it appears that by default, /etc/ledgersmb/ledgersmb.conf has these
permissions:
-rw-r--r-- 1 root root 1143 2008-09-01 15:08 /etc/ledgersmb/ledgersmb.conf
Wouldn't something like this be more sensible?
-rw-r----- 1 root www-data 1143 2008-09-01 15:08 /etc/ledgersmb/ledgersmb.conf
In particular I am thinking that because the instructions in
README.Debian have the user populate the database password into that
file, having that file be world-readable is a Bad Thing(TM).
Also, the README.Debian has this string:
"Depending on the configuration of your daabase"
That should probably say:
"Depending on the configuration of your database"
Regards,
-Roberto
--
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/pkg-sql-ledger-discussion/attachments/20080901/1e68bba8/attachment.pgp
More information about the Pkg-sql-ledger-discussion
mailing list