On Mon, Sep 12, 2016 at 12:38:05PM +0200, Agustin Martin wrote:
> On Thu, Sep 08, 2016 at 05:24:59PM +0200, Marek Straka wrote:
> > Package: libpam-encfs
> > Version: 0.1.4.4-7
> > Severity: normal
> Hi, thanks for the feedback
> > I have installed libpam-encfs to have decoded some encfs directories after
> > login through lightdm.
> > >From /usr/share/doc/libpam-encfs/README.Debian.gz
> > ---
> > Remember that:
> > * User using this module must be member of 'fuse' group.
> > First statement maybe wrong because I have no group fuse in the system.
> Without it my system complains about non readable /etc/fuser.conf. Then
> complains about unset user_allow_other needed for allow_root and fails.
Digged a bit more into this issue and noticed that you are right, since
fuse=2.9.3-5 /etc/fuse.conf is world readable, no need to add users to fuse
group, which was indeed dropped in that version. Just that all my systems
were set before and have
$ ls -la /etc/fuse.conf
-rw-r----- 1 root fuse 279 jul 2 2012 /etc/fuse.conf
as owner/group/permissions. Also, current README.Debian.gz info is from 2012,
before that removal.
Will fix this soon.
> > * You may still need to enable user_allow_other in /etc/fuse.conf.
> > Second statement "enabling user_allow_other in /etc/fuse.conf" was
> > necessary to do.
> This is needed only if the allow_other or allow_root mount options are used
> (First one is the default set in /etc/security/pam_encfs.conf).
> Should not be needed otherwise. AFAIK allow_root is useful when a graphical
> display manager is used.
and will clarify a bit more this part.
Thanks for your contribution to Debian.