Re: Audio Apps Mini-Policy, v0.1

To: debian-mentors@lists.debian.org
Subject: Re: Audio Apps Mini-Policy, v0.1
From: Steve Kemp <skx@debian.org>
Date: Tue, 28 Oct 2003 14:11:18 +0000
Message-id: <[🔎] 20031028141118.GA9617@steve.org.uk>
Reply-to: Steve Kemp <skx@debian.org>
In-reply-to: <[🔎] 20031028131147.GA12979@downhill.at.eu.org>
References: <[🔎] 1067337787.15081.280.camel@zen8100a> <[🔎] 20031028114749.GA6529@steve.org.uk> <[🔎] 20031028131147.GA12979@downhill.at.eu.org>

On Tue, Oct 28, 2003 at 02:11:47PM +0100, Andreas Metzler wrote:

> >   Why read only for other?  Given that they can't execute what is
> >  presumably a compiled binary I'd treat them as untrusted and not allow
> >  them to read it at all.
> 
> Why? Quoting policy because I can't reason better: "They should not be made
> unreadable [...]; doing so achieves no extra security, because anyone can find
> the binary in the freely available Debian package; it is merely inconvenient.
> For the same reason you should not restrict read or execute permissions on
> non-set-id executables."

  Ahhh a section I had read and then blissfully forgotten.  I guess I
 agree with the assessment there.

> If you decide to allow selecting permissions with debconf at
> install-time via debconf you have to take care of dpkg-statoverride
> one way or the other:

  Agreed.
  
Steve
--
# Debian Security Audit Project
http://www.steve.org.uk/Debian/

Reply to:

References:
- Audio Apps Mini-Policy, v0.1
  - From: Zenaan Harkness <zen@iptaustralia.net>
- Re: Audio Apps Mini-Policy, v0.1
  - From: Steve Kemp <skx@debian.org>
- Re: Audio Apps Mini-Policy, v0.1
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>

Prev by Date: Re: Audio Apps Mini-Policy, v0.1
Next by Date: Re: Audio Apps Mini-Policy, v0.1
Previous by thread: Re: Audio Apps Mini-Policy, v0.1
Next by thread: Re: Audio Apps Mini-Policy, v0.1
Index(es):
- Date
- Thread