rpm/permissions
SHA256
1
0
Fork 0
forked from pool/permissions
Code Pull Requests Activity

OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/permissions?expand=0&rev=30

Browse Source
This commit is contained in:
OBS User unknown 2009-03-02 14:55:26 +00:00 committed by Git OBS Bridge
parent 52272cc429
commit 849137f9ff
6 changed files with 56 additions and 52 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

69
permissions
View File

@ -21,8 +21,8 @@
#
# How it works:
# Change the entries as you like, then call
# `chkstat -set /etc/permissions´ or /etc/permissions.{easy,secure,paranoid}
# respectively, or call `SuSEconfig´ as yast do after they think
# 'chkstat -set /etc/permissions' or /etc/permissions.{easy,secure,paranoid}
# respectively, or call 'SuSEconfig' as yast do after they think
# that files have been modified in the system.
#
# SuSEconfig will use the files /etc/permissions and the ones ending
@ -55,46 +55,41 @@
#
/ root:root 755
/root root:root 700
/tmp root:root 1777
/root/ root:root 700
/tmp/ root:root 1777
/tmp/.X11-unix/ root:root 1777
/tmp/.ICE-unix/ root:root 1777
/dev root:root 755
/bin root:root 755
/sbin root:root 755
/lib root:root 755
/etc root:root 755
/home root:root 755
/boot root:root 755
/opt root:root 755
/usr root:root 755
/dev/ root:root 755
/bin/ root:root 755
/sbin/ root:root 755
/lib/ root:root 755
/etc/ root:root 755
/home/ root:root 755
/boot/ root:root 755
/opt/ root:root 755
/usr/ root:root 755
#
# /var:
#
/var/tmp root:root 1777
/var/tmp/ root:root 1777
/var/tmp/vi.recover/ root:root 1777
/var/log root:root 755
/var/spool root:root 755
/var/spool/atjobs at:at 700
/var/spool/atjobs/.SEQ at:at 600
/var/spool/atjobs/.lockfile at:at 600
/var/spool/atspool at:at 700
/var/spool/cron root:root 700
/var/spool/mqueue root:root 700
/var/spool/news news:news 775
/var/spool/uucp uucp:uucp 755
/var/spool/voice root:root 755
/var/spool/mail root:root 1777
/var/adm root:root 755
/var/adm/backup root:root 700
/var/cache root:root 755
/var/cache/fonts root:root 1777
/var/cache/man man:root 755
/var/yp root:root 755
/var/log/ root:root 755
/var/spool/ root:root 755
/var/spool/mqueue/ root:root 700
/var/spool/news/ news:news 775
/var/spool/uucp/ uucp:uucp 755
/var/spool/voice/ root:root 755
/var/spool/mail/ root:root 1777
/var/adm/ root:root 755
/var/adm/backup/ root:root 700
/var/cache/ root:root 755
/var/cache/fonts/ root:root 1777
/var/cache/man/ man:root 755
/var/yp/ root:root 755
/var/run/nscd/socket root:root 666
/var/run/sudo root:root 700
/var/run/sudo/ root:root 700
#
# log files that do not grow remarkably
@ -122,7 +117,7 @@
/etc/lilo.conf root:root 600
/etc/passwd root:root 644
/etc/shadow root:shadow 640
/etc/init.d root:root 755
/etc/init.d/ root:root 755
/etc/HOSTNAME root:root 644
/etc/hosts root:root 644
# Changing the hosts_access(5) files causes trouble with services
@ -136,12 +131,12 @@
/etc/opiekeys root:root 600
/etc/ppp root:dialout 750
/etc/ppp/ root:dialout 750
/etc/ppp/chap-secrets root:root 600
/etc/ppp/pap-secrets root:root 600
# sysconfig files:
/etc/sysconfig/network/providers root:root 700
/etc/sysconfig/network/providers/ root:root 700
# utempter
/usr/sbin/utempter root:tty 2755
@ -195,7 +190,7 @@
#
# directory for system crash dumps (#438041)
#
/var/crash root:root 1777
/var/crash/ root:root 1777
#
# named chroot (#438045)

6
permissions.changes
View File

@ -1,3 +1,9 @@
-------------------------------------------------------------------
Mon Mar 2 11:26:53 CET 2009 - lnussel@suse.de
- add some missing slashes to directories and remove entries for at
and cron (bnc#480855)
-------------------------------------------------------------------
Tue Nov 25 14:10:13 CET 2008 - lnussel@suse.de

8
permissions.easy
View File

@ -18,9 +18,9 @@
#
# lock file for emacs
/var/lib/xemacs/lock root:root 1777
/var/lib/xemacs/lock/ root:root 1777
# for screen's session sockets:
/var/run/uscreens root:root 1777
/var/run/uscreens/ root:root 1777
#
# /etc
@ -306,7 +306,7 @@
#
# faxq helper:
/usr/lib/mgetty+sendfax/faxq-helper fax:root 4711
/var/spool/fax/outgoing fax:root 1755
/var/spool/fax/outgoing/ fax:root 1755
/var/spool/fax/outgoing/locks fax:root 0777
# TODO: package should set this permissions
/var/spool/fax/archive fax:uucp 700
@ -328,7 +328,7 @@
#
# uucp
#
/var/spool/uucppublic root:root 1777
/var/spool/uucppublic/ root:root 1777
/usr/bin/uucp uucp:uucp 6555
/usr/bin/uuname uucp:uucp 6555
/usr/bin/uustat uucp:uucp 6555

8
permissions.paranoid
View File

@ -32,9 +32,9 @@
# Directories
#
# no lock files for emacs:
/var/lib/xemacs/lock root:trusted 1775
/var/lib/xemacs/lock/ root:trusted 1775
# for screen's session sockets:
/var/run/uscreens root:trusted 1775
/var/run/uscreens/ root:trusted 1775
#
@ -323,7 +323,7 @@
# restrictive, only for "trusted" group users:
# faxq helper:
/usr/lib/mgetty+sendfax/faxq-helper fax:root 0711
/var/spool/fax/outgoing fax:trusted 1770
/var/spool/fax/outgoing/ fax:trusted 1770
/var/spool/fax/outgoing/locks fax:trusted 1770
# TODO: package should set this permissions
/var/spool/fax/archive fax:uucp 700
@ -345,7 +345,7 @@
#
# uucp
#
/var/spool/uucppublic root:uucp 1770
/var/spool/uucppublic/ root:uucp 1770
/usr/bin/uucp uucp:uucp 0555
/usr/bin/uuname uucp:uucp 0555
/usr/bin/uustat uucp:uucp 0555

8
permissions.secure
View File

@ -56,9 +56,9 @@
# Directories
#
# no lock files for emacs:
/var/lib/xemacs/lock root:trusted 1775
/var/lib/xemacs/lock/ root:trusted 1775
# for screen's session sockets:
/var/run/uscreens root:root 1777
/var/run/uscreens/ root:root 1777
#
# /etc
@ -347,7 +347,7 @@
# restrictive, only for "trusted" group users:
# faxq helper:
/usr/lib/mgetty+sendfax/faxq-helper fax:root 4711
/var/spool/fax/outgoing fax:root 0755
/var/spool/fax/outgoing/ fax:root 0755
/var/spool/fax/outgoing/locks fax:root 0755
# TODO: package should set this permissions
/var/spool/fax/archive fax:uucp 700
@ -369,7 +369,7 @@
#
# uucp
#
/var/spool/uucppublic root:uucp 1770
/var/spool/uucppublic/ root:uucp 1770
/usr/bin/uucp uucp:uucp 6555
/usr/bin/uuname uucp:uucp 6555
/usr/bin/uustat uucp:uucp 6555

9
permissions.spec
View File

@ -1,7 +1,7 @@
#
# spec file for package permissions (Version 2008.11.25)
# spec file for package permissions (Version 2009.3.2)
#
# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@ -22,7 +22,7 @@ Name: permissions
License: GPL v2 or later
Group: Productivity/Security
AutoReqProv: on
Version: 2008.11.25
Version: 2009.3.2
Release: 1
Provides: aaa_base:/etc/permissions
Requires: /sbin/SuSEconfig
@ -91,6 +91,9 @@ install -m 644 %{SOURCE9} $RPM_BUILD_ROOT/etc
/var/adm/fillup-templates/sysconfig.security
%changelog
* Mon Mar 02 2009 lnussel@suse.de
- add some missing slashes to directories and remove entries for at
and cron (bnc#480855)
* Tue Nov 25 2008 lnussel@suse.de
- add VirtualBox (bnc#429725)
* Fri Nov 07 2008 lnussel@suse.de