-
Notifications
You must be signed in to change notification settings - Fork 11
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Limit permissions of /etc/sudoers.d #6
Comments
I'm not against it, but would it be better to leave it to the package maintainer to decide? |
We don't create the directory |
And the files inside are already safe ( |
Yes, the files are safe but not the directory, and it was reported as a security warning by lynis, probably because a malicious user can obtain some information about the available users by listing the directory. That's why I reported this problem. It can probably be an option in the role, so that the end-user can decide if he wants to change the permissions or keep the permissions as is. |
Renamed it to Thanks for the addition! |
Thanks! |
For security purpose, the permissions of /etc/sudoers.d should probably be set to 0750. It would be a nice addition to the role. If you agree with that, I can probably make a pull request.
The text was updated successfully, but these errors were encountered: