Bug#588831: lintian: please add permission check for /etc/sudoers.d/*

To: 588831@bugs.debian.org
Subject: Bug#588831: lintian: please add permission check for /etc/sudoers.d/*
From: Carsten Hey <carsten@debian.org>
Date: Mon, 13 Dec 2010 00:12:39 +0100
Message-id: <[🔎] 20101212231239.GO31514@furrball.stateful.de>
Mail-followup-to: Carsten Hey <carsten@debian.org>, 588831@bugs.debian.org
Reply-to: Carsten Hey <carsten@debian.org>, 588831@bugs.debian.org
In-reply-to: <20100712175441.GS27048@foghorn.stateful.de>
References: <20100712175441.GS27048@foghorn.stateful.de>

* Carsten Hey [2010-07-12 19:54 +0200]:
> | ... : /etc/sudoers.d/aegir is mode 0600, should be 0440 ; ...
>
> Could you please add a check for this?  Nowadays many people exclusively
> use sudo to get privileges and thus breaking sudo (e.g., #576527) by an
> unrelated package is really bad, but it is also easily detectable.
>
> sudo has an lintian overwrite for /etc/sudoers.d/README's permissions
> (non-standard-file-perm), I guess you need to touch two things in
> lintian to a) add above mentioned check and b) exclude /etc/sudoers.d/*
> from non-standard-file-perm.

debhelper/squeeze includes magic to prevent /etc/sudoers.d/* from having
bad permissions (patch and bugreport: http://bugs.debian.org/589574 ).

I don't think having such a check in lintian would be useful anymore,
since:

  * lintian can not check maintainer scripts for creating files with
    wrong permissions.
  * There shouldn't be many maintainers who don't use debhelper, use
    lintian and would fail to set correct permissions.

Should this bug report be closed?

Regards
Carsten

Reply to:

Prev by Date: İHRACAT HİBE DESTEKLERİ - www.cproz.com.tr
Next by Date: Bug#606933: "manpage-has-errors-from-man ... can't set the locale" when running in Lenny
Previous by thread: İHRACAT HİBE DESTEKLERİ - www.cproz.com.tr
Next by thread: Bug#606933: "manpage-has-errors-from-man ... can't set the locale" when running in Lenny
Index(es):
- Date
- Thread