Hello, On Sun, 2022-07-24 at 15:09 +0100, RL wrote: > Marc Haber <mh+debian-devel@zugschlus.de> writes: > > > ... Here is what the adduser team considers possible > > documentation for this, and we itend to include this in NEWS.Debian > > as a > > rationale for the change. > > As a user who reads NEWS.Debian (via apt-listchanges) i found the > text > didnt give me the answers i was looking for. I wanted to know: It is a bit long, but this discussion has come up a number of times over the years, so for the people interested in the details, we felt it was better to have a well-documented rationale. > > - what had changed (and when) This was the first line of the NEWS. "The default for DIR_MODE has been set to 0700 for this release. Detailed explanation follows." So: there is the change; no need to keep reading unless you're interested in the details. > - why has a change been made I think this is explained in excruciating detail. The short version (from NEWS): "mode 0700 provides both the most secure, unsurprising default" > - how the change might affects my existing/new systems - eg do i need > to > manually do something to adopt it? > - how/if i can customise/revert/use the new changes? > For the vast majority of users, nothing needs to be changed. If you run a multi-user system, nothing about your existing users will change, but new users created with adduser will have the new permissions. If you do not want this, the method for changing it back is well documented. > I also found the end of the draft was written almost combatively - as > a > user i dont really care about bug reports or whether developers > argued > on a mailing list: i just want to know the facts and whether i need > to > do anything different as a result. A more neutral phrasing would be > better and would also go out-of-date slower. I am sorry you read it that way; as I said, we felt that an extended description of the change (and some of its history, for people wondering why this change is happening) was appropriate. Certainly no combativeness was intended. > > Most NEWS files suffer from this to some extent but i was hoping for > something with less about bug reports and more like: > > > "adduser version 3.122 has changed > pppppp (DIR_MODE setting in /etc/???? ) from aaa to bbb (one of these > is > 0700 i think, but i couldnt tell which?). Respectfully, the NEWS is not THAT unclear. Perhaps a better opening would have been: The default mode for users created with adduser is now 0700. If you don't know what that means and/or don't know what the default was, you can ignore this change. (but that alone would leave questions unanswered, for people that have followed the issue) Anyway, its been released at this point, so the issue is moot :) -- Cheers, Matt
Attachment:
signature.asc
Description: This is a digitally signed message part