On 4. August 2003 at 16:58, Ben Reser wrote: > On Tue, Aug 05, 2003 at 01:20:20AM +0200, Chmouel Boudjnah wrote: > > Ben Reser <[EMAIL PROTECTED]> writes: > > > Perms on any file in /etc/rc.d/init.d should be 0700. rpmlint should > > > test for this. > > > > it depend of the msec security level (i guess)... > > Humm... I guess they are readable on some of my other machines. But at > a minimum they should be executable for root. Otherwise they won't run.
hm, why should be init scripts only root readable/executable by default? i think as chmouel that this is work for msec. readable startup script isn't much security risc, as you know, because there is many others things which must be completed if this may be prevent for starting unprivileged users. .. and there is many others files/dirs which may have strict permissions by default, such as /etc/hosts.[allow,deny], /etc/fstab, /etc/sysctl.conf (this one isn't handled in any msec level!), and other fundamental files and dirs, not only in 4 or 5 msec level.. -- member of Advanced InternetWorks group -> http://www.ainetworks.sk professional home page -> http://tibor.pittich.sk personal home page -> http://c0re.phuture.sk
pgp00000.pgp
Description: PGP signature
