mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-12-23 01:23:36 +07:00
Code Issues Packages Projects Releases Wiki Activity

revert umask 027 by default

Browse Source 
because broken because this also happens for root while it should not

https://github.com/Kicksecure/security-misc/issues/185
This commit is contained in:
Patrick Schleizer 2024-01-06 09:10:45 -05:00
parent 3f1304403f
commit 86f91e3030
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
2 changed files with 3 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -392,7 +392,9 @@ See:
#### umask
Default `umask` is set to `027` for files created by non-root users such as for
example user `user`.
example user `user`. Broken. Disabled. See:
* https://github.com/Kicksecure/security-misc/issues/184
This is doing using pam module `pam_mkhomedir.so umask=027`.

8
usr/share/pam-configs/umask-security-misc
View File

@ -1,8 +0,0 @@
Name: Restrict umask to 027 (by package security-misc)
Default: yes
Priority: 100
Session-Type: Additional
Session-Interactive-Only: yes
Session:
[success=1 default=ignore] pam_succeed_if.so uid eq 0
optional pam_umask.so umask=027