Bug#588831: lintian: please add permission check for /etc/sudoers.d/*
* Carsten Hey [2010-07-12 19:54 +0200]:
> | ... : /etc/sudoers.d/aegir is mode 0600, should be 0440 ; ...
>
> Could you please add a check for this? Nowadays many people exclusively
> use sudo to get privileges and thus breaking sudo (e.g., #576527) by an
> unrelated package is really bad, but it is also easily detectable.
>
> sudo has an lintian overwrite for /etc/sudoers.d/README's permissions
> (non-standard-file-perm), I guess you need to touch two things in
> lintian to a) add above mentioned check and b) exclude /etc/sudoers.d/*
> from non-standard-file-perm.
debhelper/squeeze includes magic to prevent /etc/sudoers.d/* from having
bad permissions (patch and bugreport: http://bugs.debian.org/589574 ).
I don't think having such a check in lintian would be useful anymore,
since:
* lintian can not check maintainer scripts for creating files with
wrong permissions.
* There shouldn't be many maintainers who don't use debhelper, use
lintian and would fail to set correct permissions.
Should this bug report be closed?
Regards
Carsten
Reply to: