Hi MW This is not really a bug. The permissions were originally chosen for a reason of sharing class information, but I will investigate whether any changes are appropriate now. What are people afraid of specifically? The info in this directory is basically public state info. Keys are safe. Subdirs are private?
Morten Werner Forsbring wrote: > Hi, > > some users want to prevent having a world-readable $workdir (defaults > to /var/cfengine), but each time cfagent runs, the permissions of > VLOCKDIR/$workdir is changed to a fixed value of '755'. > > In the Debian package for 2.2.3 I have added an old patch [1] which > only removes the write-bits for group and other. Could you please > consider applying it too? :) > > > - Werner > > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=215910 > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Bug-cfengine mailing list > [email protected] > https://cfengine.org/mailman/listinfo/bug-cfengine -- Mark Burgess Web: http://www.iu.hio.no/~mark Tlf: +47 22453272 _______________________________________________ Bug-cfengine mailing list [email protected] https://cfengine.org/mailman/listinfo/bug-cfengine
