Date: Sun, 2 Feb 2020 14:58:09 +0100 From: Miroslav Lachman <000.fbsd@quip.cz> To: Ben Woods <woodsb02@gmail.com>, "Rodney W. Grimes" <freebsd-rwg@gndrsh.dnsmgr.net> Cc: FreeBSD Hackers <freebsd-hackers@freebsd.org>, Gordon Bergling <gbergling@googlemail.com>, Ryan Stone <rysto32@gmail.com>, Wojciech Puchar <wojtek@puchar.net> Subject: Re: More secure permissions for /root and /etc/sysctl.conf Message-ID: <616e8222-a377-fdf0-bf55-79e73a509065@quip.cz> In-Reply-To: <CAOc73CCYfbLvY%2BegqWruGbP86h_jLryTDvFQ6d4F4_RGQ%2BmUxw@mail.gmail.com> References: <4584E3BE-F412-4902-AFB9-CAE88D660ED1@googlemail.com> <202002011904.011J4rBB079499@gndrsh.dnsmgr.net> <CAOc73CCYfbLvY%2BegqWruGbP86h_jLryTDvFQ6d4F4_RGQ%2BmUxw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Ben Woods wrote on 2020/02/02 02:46: [...] > DragonFlyBSD 5.6.2 = 700 > HardenedBSD build 104 = 755 > NetBSD 9.0 RC1 = 755 > OpenBSD 6.6 = 700 > > For what it's worth, I am broadly supportive of this because I see no > reason for /root to be world readable. +1 I see no reason for world readable /root too. We always set user's homes to 0700 (subdirs of /usr/home). Miroslav Lachman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?616e8222-a377-fdf0-bf55-79e73a509065>