Use standard file modes in apt package #3122
Labels
Comments
scottnonnenberg-signal
changed the title
|
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Bug Description
(Non-executable) files under /opt/Signal (and the directory itself) have non-standard permissions.
As per Debian Policy (10.9) "Files should be owned by root:root, and made writable only by the owner and universally readable (and executable, if appropriate), that is mode 644 or 755".
However, the package installs files with 664 permissions and directories with 775, instead of 644 and 755. In other words, the files (except the excutables) are writeable by the root group.
This is not a big deal and should not cause any security issues under normal circumstances, but it is still non-standard and looks strange. I feel that even though Signal-Desktop is a 3rd party package, and not currently a part of Debian proper (I hope some day it will be), it would still be nice to follow the Debian Policy whenever possible.
Steps to Reproduce
Actual Result:
drwxrwxr-x 1 root root 578 2019-02-06 19:25 /opt/Signal/
Expected Result:
drwxr-xr-x 1 root root 578 2019-02-06 19:25 /opt/Signal/
Platform Info
Signal Version:
1.21.0
Operating System:
Debian 9.7.
The text was updated successfully, but these errors were encountered: