Re: Bug#538392: group staff: moving forward
On Tue, 11 Aug 2009, Don Armstrong wrote:
> On Tue, 11 Aug 2009, Santiago Vila wrote:
> > Could we please move the default to 755, not 2775, like every other
> > "normal" directory in Debian? There is little point in keeping those
> > directories world-writable if they stop being owned by group staff.
>
> The group for the directories can still be staff, it should just not
> be writable by group staff by default [but configurable by users to
> be, with that configuration respected.]
No need to add configuration stuff. If a user wants something different
than the default, he/she can easily make a chown and a chgrp.
> /usr/local isn't a normal subdirectory tree, as nothing should be
> shipped in it by Debian packages.
>
> I had assumed that basefiles would do something like the following:
>
> 1) if group staff has non-root users:
> - ask if /usr/local should be writable by staff
> * yes: bail out; don't ask this question again
> * no: continue to 2
Please, no. I try not to mix "base-files" and "ask" in the same sentence.
Let's keep it simple: Beginning squeeze, base-files will no longer
create those directories with special permissions. I think this
respects the "principle of least surprise", as already created
directories (from lenny) will be kept in whatever status they are.
Note: Those directories are created only when base-files is first
installed by debootstrap from debian-installer.
If required, we can document that the default for squeeze has changed
in the release notes for squeeze.
Reply to: