Re: /root/ drwxr-xr-x? possible solution?

To: <debian-isp@lists.debian.org>
Cc: <debian-devel@lists.debian.org>
Subject: Re: /root/ drwxr-xr-x? possible solution?
From: Loren Jordan <ljordan@nw3c.org>
Date: Wed, 07 Aug 2002 17:00:55 -0400
Message-id: <[🔎] 5.1.0.14.2.20020807162349.021b9e80@nw3c.org>
In-reply-to: <[🔎] 08cb01c23e49$d6f1c9e0$0200a8c0@zentekgateway>
References: <20020731185525.B11002@itreff.de> <20020731213902.GA2109@valiant.oeknet.mhn.de> <[🔎] 20020807174659.GA15994@omega>

Sorry for posting to 2 lists at the same time here.

It appears that there is very little progress towards a solution on this soI figured I would chime in with my $0.02 on the subject.

The adduser package asks a question during the configuration phase of theinstall of that package. It asks if you want "world readable" homedirectories for users on that system. This assumes that you use "adduser"rather than the standard "useradd" command.

I find it surprising that nobody has provided a patch to the specific partof the Debian install system to ask the question about root's directory andthem make the required changes (chmod) if needed.

Is this something that could/would be added to Debian 3.0r1 or is it awaste of time to worry about until Sarg goes stable?

I personally chmod 700 /root on every one of my machines and don't worryabout the default setting. I would answer "NO" to the question asking ifroot's home directory should be world readable if that question were to beasked.

To the people that maintain the packages affected by my above suggestion,would a patch supplied with a wishlist bug be used in woody+1 or is thissomething that must continue to be fixed with a simple chmod command?

Are there any other ideas on how to "fix" the problem without demanding adifferent default setting? I belive that this setting should beconfigurable because it seems that "everybody" will not be happy with the"default" setting no matter what it is.


Thanks,
Loren


At 05:35 AM 8/8/2002 +1000, Jason Lim wrote:

> On Wed, Jul 31, 2002 at 11:39:02PM +0200, Peter Palfrader wrote:
> > On Wed, 31 Jul 2002, Thomas -Balu- Walter wrote:
> >
> > > # ls -lad /root/
> > > drwxr-xr-x    9 root     root         4096 Jul 31 18:25 /root/
> > >
> > > I wonder if /root/ shouldn't be accessible by root only per default?
But
> > > in which package can I find this one? Should I make a bug-report or
do
> > > you think this is normal? (It might be some kind of SuSE-remembrance
> > > from earlier days ;)
> >
> > This is not the first time this comes up.
> >
> > short version: /root 755 is no security risk and it wont get changed
> >                either. If you want, set it to 0700 on your box.
> > long version: search the list archives (both -user and -devel will
have


<<<SNIP>>>

Reply to:

Follow-Ups:
- Re: /root/ drwxr-xr-x? possible solution?
  - From: Neil Spring <nspring@cs.washington.edu>

References:
- Re: /root/ drwxr-xr-x?
  - From: Pedro Larroy <piotr@omega.resa.es>
- Re: /root/ drwxr-xr-x?
  - From: "Jason Lim" <maillist@jasonlim.com>

Prev by Date: Re: kernel patch for Cobalt Qube machines
Next by Date: Re: About GVD
Previous by thread: Re: /root/ drwxr-xr-x?
Next by thread: Re: /root/ drwxr-xr-x? possible solution?
Index(es):
- Date
- Thread