Re: perm of etc/zorp/ is 0700
On Tue, Oct 14, 2003 at 10:51:14PM +0200, Magos?nyi ?rp?d wrote:
> I am asking your advice per policy section 10.9. [*]
> /etc/zorp is mode 0700 in upstream. In a typical setup, almost
> every single file under this directory contains sensitive information:
> firewall rules, cryptographic keys, etc.
> I think it justifies a lintian override.
> What do you think?
> [*] The rules in this section are guidelines for general use. If
> necessary you may deviate from the details below. However, if you do so
> you must make sure that what is done is secure and you should try to be
> as consistent as possible with the rest of the system. You should
> probably also discuss it on debian-devel first.
If the directory is justified, then the files should be 600 aswell.
Debian - http://www.debian.org/
Linux 1394 - http://www.linux1394.org/
Subversion - http://subversion.tigris.org/
WatchGuard - http://www.watchguard.com/