Date: Sat, 13 Jul 2019 16:48:27 +0000 (UTC) From: Ian Lepore <ian@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: svn commit: r349976 - head Message-ID: <201907131648.x6DGmRc4090395@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: ian Date: Sat Jul 13 16:48:27 2019 New Revision: 349976 URL: https://svnweb.freebsd.org/changeset/base/349976 Log: Add an entry mentioning the permission/mode change to daily accounting files. Modified: head/UPDATING Modified: head/UPDATING ============================================================================== --- head/UPDATING Sat Jul 13 16:32:19 2019 (r349975) +++ head/UPDATING Sat Jul 13 16:48:27 2019 (r349976) @@ -31,6 +31,14 @@ NOTE TO PEOPLE WHO THINK THAT FreeBSD 13.x IS SLOW: disable the most expensive debugging functionality run "ln -s 'abort:false,junk:false' /etc/malloc.conf".) +20190713: + Default permissions on the /var/account/acct file (and copies of it rotated + by periodic daily scripts) are changed from 0644 to 0640 because the file + contains sensitive information that should not be world-readable. If the + /var/account directory must be created by rc.d/accounting, the mode used is + now 0750. Admins who use the accounting feature are encouraged to change + the mode of an existing /var/account directory to 0750 or 0700. + 20190620: Entropy collection and the /dev/random device are no longer optional components. The "device random" option has been removed.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201907131648.x6DGmRc4090395>