On Tue, Aug 05, 2003 at 02:21:06AM +0200, Tibor Pittich wrote: > hm, why should be init scripts only root readable/executable by default? > i think as chmouel that this is work for msec. > readable startup script isn't much security risc, as you know, because > there is many others things which must be completed if this may be > prevent for starting unprivileged users. > .. and there is many others files/dirs which may have strict > permissions by default, such as /etc/hosts.[allow,deny], /etc/fstab, > /etc/sysctl.conf (this one isn't handled in any msec level!), and > other fundamental files and dirs, not only in 4 or 5 msec level..
Guys you're all missing my point. I don't care if they're readable by anyone else. rpmlint should make sure that they are owned by the root user and executable by that user. That's all I really want. Anything more permissive is gravey and doesn't matter to what I'm getting at. -- Ben Reser <[EMAIL PROTECTED]> http://ben.reser.org "What upsets me is not that you lied to me, but that from now on I can no longer believe you." -- Nietzsche
