Re: perm of etc/zorp/ is 0700

To: Magos?nyi ?rp?d <mag@bunuel.tii.matav.hu>
Cc: debian-devel <debian-devel@lists.debian.org>
Subject: Re: perm of etc/zorp/ is 0700
From: Ben Collins <bcollins@debian.org>
Date: Tue, 14 Oct 2003 18:01:26 -0400
Message-id: <[🔎] 20031014220126.GA378@phunnypharm.org>
In-reply-to: <[🔎] 1066164674.1033.577.camel@kusturica>
References: <[🔎] 1066164674.1033.577.camel@kusturica>

On Tue, Oct 14, 2003 at 10:51:14PM +0200, Magos?nyi ?rp?d wrote:
> Hi!
> 
> I am asking your advice per policy section 10.9. [*]
> 
> /etc/zorp is mode 0700 in upstream. In a typical setup, almost
> every single file under this directory contains sensitive information:
> firewall rules, cryptographic keys, etc.
> 
> I think it justifies a lintian override.
> 
> What do you think?
> 
> [*] The rules in this section are guidelines for general use. If
> necessary you may deviate from the details below. However, if you do so
> you must make sure that what is done is secure and you should try to be
> as consistent as possible with the rest of the system. You should
> probably also discuss it on debian-devel first. 

If the directory is justified, then the files should be 600 aswell.

-- 
Debian     - http://www.debian.org/
Linux 1394 - http://www.linux1394.org/
Subversion - http://subversion.tigris.org/
WatchGuard - http://www.watchguard.com/

Reply to:

Follow-Ups:
- Re: [debian-devel] Re: perm of etc/zorp/ is 0700
  - From: Magosányi Árpád <mag@bunuel.tii.matav.hu>

References:
- perm of etc/zorp/ is 0700
  - From: Magosányi Árpád <mag@bunuel.tii.matav.hu>

Prev by Date: perm of etc/zorp/ is 0700
Next by Date: Re: recent spam to this list
Previous by thread: perm of etc/zorp/ is 0700
Next by thread: Re: [debian-devel] Re: perm of etc/zorp/ is 0700
Index(es):
- Date
- Thread