Date: Mon, 17 Feb 1997 20:23:13 +0100 (MET) From: Wolfram Schneider <wosch@cs.tu-berlin.de> To: joerg@freefall.freebsd.org (Joerg Wunsch) Cc: CVS-committers@freefall.freebsd.org, cvs-all@freefall.freebsd.org, cvs-share@freefall.freebsd.org Subject: Re: cvs commit: src/share/skel Makefile dot.login dot.profile Message-ID: <199702171923.UAA21449@ole.cs.tu-berlin.de> In-Reply-To: <199702171856.KAA06251@freefall.freebsd.org> from "Joerg Wunsch" at Feb 17, 97 10:56:31 am
next in thread | previous in thread | raw e-mail | index | archive | help
Joerg Wunsch > Modified: share/skel Makefile dot.login dot.profile > Various sanitizations: > . Install the files with better default permissions in the skeleton > directory; pw(8) retains the permissions when creating a new > acount, and installing them read-only is stupid, yet installing > .rhosts world-readable is dangerous. Please fix pw(8) (or maybe sysinstall), a read-only example file /usr/share/skel/dot.rhosts is perfectly silly. adduser(8) does a security check: chmod(0600, "$homedir/$file") if ($file =~ /^\.(rhosts|Xauthority|kermrc|netrc)$/); chmod(0700, "$homedir/$file") if ($file =~ /^(Mail|prv|\.(iscreen|term))$/); Wolfram
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199702171923.UAA21449>