From owner-cvs-share Mon Feb 17 11:25:07 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id LAA08444 for cvs-share-outgoing; Mon, 17 Feb 1997 11:25:07 -0800 (PST) Received: from mail.cs.tu-berlin.de (root@mail.cs.tu-berlin.de [130.149.17.13]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id LAA08276; Mon, 17 Feb 1997 11:23:18 -0800 (PST) Received: from ole.cs.tu-berlin.de (wosch@ole.cs.tu-berlin.de [130.149.22.3]) by mail.cs.tu-berlin.de (8.8.5/8.8.5) with ESMTP id UAA29034; Mon, 17 Feb 1997 20:23:15 +0100 (MET) From: Wolfram Schneider Received: (from wosch@localhost) by ole.cs.tu-berlin.de (8.8.5/8.8.5) id UAA21449; Mon, 17 Feb 1997 20:23:14 +0100 (MET) Message-Id: <199702171923.UAA21449@ole.cs.tu-berlin.de> Subject: Re: cvs commit: src/share/skel Makefile dot.login dot.profile To: joerg@freefall.freebsd.org (Joerg Wunsch) Date: Mon, 17 Feb 1997 20:23:13 +0100 (MET) Cc: CVS-committers@freefall.freebsd.org, cvs-all@freefall.freebsd.org, cvs-share@freefall.freebsd.org In-Reply-To: <199702171856.KAA06251@freefall.freebsd.org> from "Joerg Wunsch" at Feb 17, 97 10:56:31 am X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-cvs-share@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Joerg Wunsch > Modified: share/skel Makefile dot.login dot.profile > Various sanitizations: > . Install the files with better default permissions in the skeleton > directory; pw(8) retains the permissions when creating a new > acount, and installing them read-only is stupid, yet installing > .rhosts world-readable is dangerous. Please fix pw(8) (or maybe sysinstall), a read-only example file /usr/share/skel/dot.rhosts is perfectly silly. adduser(8) does a security check: chmod(0600, "$homedir/$file") if ($file =~ /^\.(rhosts|Xauthority|kermrc|netrc)$/); chmod(0700, "$homedir/$file") if ($file =~ /^(Mail|prv|\.(iscreen|term))$/); Wolfram