bug#27135: /root is world readable by default

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#27135: /root is world readable by default

From:	Marius Bakke
Subject:	bug#27135: /root is world readable by default
Date:	Tue, 30 May 2017 18:24:49 +0200
User-agent:	Notmuch/0.24.1 (https://notmuchmail.org) Emacs/25.2.1 (x86_64-unknown-linux-gnu)

Ludovic Courtès <address@hidden> writes:

> Hi Alex,
>
> Alex Griffin <address@hidden> skribis:
>
>> After a default install of GuixSD, anybody can read root's home
>> directory. I think /root should have permissions 700 instead of 755.
>
> Fixed in 41db5a756369f5b14d1e67a523ee0940cad56744.
>
> For the other user accounts, useradd(8) does its thing, and apparently
> it defaults to world-readable accounts (it defaults to a umask of 022 as
> written in the man page).
>
> Thoughts?

I'm in favor of overriding that default. I usually chmod /home/* to 0700
anyway. 0750 would be okay too and probably covers more use cases.

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

bug#27135: /root is world readable by default, Alex Griffin, 2017/05/29
- bug#27135: /root is world readable by default, Ludovic Courtès, 2017/05/30
  - bug#27135: /root is world readable by default, Marius Bakke <=

Prev by Date: bug#27135: /root is world readable by default
Next by Date: bug#27137: make check 'FAIL: tests/guix-package-net'
Previous by thread: bug#27135: /root is world readable by default
Next by thread: bug#27137: make check 'FAIL: tests/guix-package-net'
Index(es):
- Date
- Thread