Re: Seeking consensus for some changes in adduser

To: debian-devel@lists.debian.org
Subject: Re: Seeking consensus for some changes in adduser
From: Ansgar <ansgar@43-1.org>
Date: Tue, 08 Mar 2022 20:48:46 +0100
Message-id: <[🔎] d856baa447d3c2664860938224ab4b007540fb75.camel@43-1.org>
In-reply-to: <[🔎] tsl4k48b5ug.fsf@suchdamage.org>
References: <[🔎] YieJALY0ny0+07pw@torres.zugschlus.de> <[🔎] tsl4k48b5ug.fsf@suchdamage.org>

On Tue, 2022-03-08 at 12:29 -0700, Sam Hartman wrote:
> > > > > 
> Take a look at https://salsa.debian.org/vorlon/pam/-/merge_requests/3
> 
> According to the history of that patch, we have some old consensus to
> move toward usergroups and a default umask of 0002 (except for root
> which gets 0022).

On systems that don't use usergroups for all/some users, doesn't this
change make all files writable by other users by default?  That would
seem like a very unsecure change on upgrades (or as a default).

(Though I think the current world-readable by default is already quite
bad. It seems like a unsafe choice on both single-user and multi-user
systems...)

Ansgar

Reply to:

Follow-Ups:
- Re: Seeking consensus for some changes in adduser
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Seeking consensus for some changes in adduser
  - From: Philip Hands <phil@hands.com>

References:
- Seeking consensus for some changes in adduser
  - From: Marc Haber <mh+debian-devel@zugschlus.de>
- Re: Seeking consensus for some changes in adduser
  - From: Sam Hartman <hartmans@debian.org>

Prev by Date: Re: special characters in account names
Next by Date: Re: proposed MBF: packages still using source format 1.0
Previous by thread: Re: Seeking consensus for some changes in adduser
Next by thread: Re: Seeking consensus for some changes in adduser
Index(es):
- Date
- Thread