Bug#954021: Please detect use of staff group (and 2775 permissions) in maintainer scripts without checking staff-group-for-usr-local
Hi Josh,
> Policy version 4.1.4, in April 2018, states that /usr/local and subdirectories
> should only have group "staff" if /etc/staff-group-for-usr-local exists,
> and otherwise they should have group "root". Many packages still
> unconditionally chown directories to root:staff, or chmod directories to
> 2755.
Just to clarify, at a very rough approximation we would look for
maintainer scripts that contain the strings "root:staff" and "/usr/
local", but do not contain the "/etc/staff-group-for-usr-local"?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org 🍥 chris-lamb.co.uk
`-
Reply to: