Bug#1095991: initramfs-tools-core: make /dev/pts mode= consistent with systemd
Package: initramfs-tools-core
Version: 0.145
Severity: normal
Dear Maintainer,
related to https://bugs.debian.org/1093870
systemd is switching to mounting /dev/pts with mode=0600 instead of
mode=0620. This is more secure, and is in line with for example
util-linux removing /bin/mesg and /bin/write due to security concerns.
Let's make /usr/share/initramfs-tools/init consistent by applying the
same change.
Patch attached.
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.12.13-amd64 (SMP w/2 CPU threads; PREEMPT)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages initramfs-tools-core depends on:
ii coreutils 9.5-1+b1
ii cpio 2.15+dfsg-2
ii dracut-install 106-2
ii e2fsprogs 1.47.2-1
ii klibc-utils 2.0.13-4
ii kmod 33+20240816-2
ii logsave 1.47.2-1
ii udev 257.3-1
Versions of packages initramfs-tools-core recommends:
ii busybox 1:1.37.0-4
ii zstd 1.5.6+dfsg-2
Versions of packages initramfs-tools-core suggests:
ii bash-completion 1:2.16.0-7
-- no debconf information
diff --git a/init b/init
index 5552c64..1bd9669 100755
--- a/init
+++ b/init
@@ -42,7 +42,7 @@ mount -t devtmpfs -o nosuid,mode=0755 udev /dev
[ ! -h /dev/stderr ] && ln -s /proc/self/fd/2 /dev/stderr
mkdir /dev/pts
-mount -t devpts -o noexec,nosuid,gid=5,mode=0620 devpts /dev/pts || true
+mount -t devpts -o noexec,nosuid,gid=5,mode=0600 devpts /dev/pts || true
# Export the dpkg architecture
export DPKG_ARCH=
Reply to: