remove umask changes since these are causing issues are are not needed anymore

thanks to home folder permission lockdown https://forums.whonix.org/t/change-default-umask/7416/45
2025-07-19 20:29:53 +07:00 · 2019-08-24 12:14:22 -04:00
parent 41c4682280
commit 0ae5c5ff14
8 changed files with 2 additions and 502 deletions
--- a/debian/control
+++ b/debian/control
@ -148,21 +148,6 @@ Description: enhances misc security settings
  * /usr/lib/security-misc/pam-abort-on-locked-password
 .
 access rights restrictions:
- .
-  * The default umask is changed to 027. This allows only the owner and group
- to read and write to newly created files.
- /etc/login.defs.security-misc
- /usr/share/pam-configs/usergroups-security-misc
- /etc/sudoers.d/umask-security-misc
- .
-  * Enables pam_umask.so usergroups so group permissions are same as user
- permissions. Debian by default uses User Private Groups (UPG).
- https://wiki.debian.org/UserPrivateGroups
- /usr/share/pam-configs/usergroups-security-misc
- .
-  * Create home directory on login with umask 027 using
- pam_mkhomedir.so umask=027
- /usr/share/pam-configs/mkhomedir-security-misc
 .
  * Removes read, write and execute access for others for all users who have
 home folders under folder /home by running for example