[Pkg-shadow-devel] Bug#1026213: Bug#1026213: login: $HOME created as 0755 by default
Mason Loring Bliss
mason at blisses.org
Fri Dec 16 18:16:17 GMT 2022
This would violate POLA and break, among other things already noted, things
like fingerd, which wants to run with least-privilege but still access
.plan and .project files.
Security is a process and requires conscious thought by an administrator,
and default permissions on home directories are no different and easily
tailored away from the expected defaults.
--
Mason Loring Bliss (( If I have not seen as far as others, it is because
mason at blisses.org )) giants were standing on my shoulders. - Hal Abelson
More information about the Pkg-shadow-devel
mailing list