On 8/28/06, Randy McMurchy <[EMAIL PROTECTED]> wrote:
Dan Nicholson wrote these words on 08/28/06 08:52 CST:
> I have to agree with Robert on this one. If something is known to
> install with weak permissions, I think we should change them instead
> of writing it off as bad packaging. The fix is simple enough.
The argument is not the permissions of a file. Bruce and I are saying
that it is improper to add anyone to the root group (which makes this
whole discussion moot, as there should be no users in the root group).
No, I agree with that point. Under normal operations and normal use
case, this isn't an issue. But, it's weaker permissions than it needs
to be and is more susceptible to a security breach. Not a big deal,
though. I was just saying I agreed with Robert. I don't want to get
into an ugly debate about this.
--
Dan
--
http://linuxfromscratch.org/mailman/listinfo/lfs-dev
FAQ: http://www.linuxfromscratch.org/faq/
Unsubscribe: See the above information page
