On Mon, Sep 12, 2016 at 12:38:05PM +0200, Agustin Martin wrote:
> On Thu, Sep 08, 2016 at 05:24:59PM +0200, Marek Straka wrote:
> > Package: libpam-encfs
> > Version: 0.1.4.4-7
> > Severity: normal
> 
> Hi, thanks for the feedback
>  
> > I have installed libpam-encfs to have decoded some encfs directories after 
> > login through lightdm. 
> > 
> > >From /usr/share/doc/libpam-encfs/README.Debian.gz
> > ---
> > Remember that:
> >  * User using this module must be member of 'fuse' group.
> 
> > First statement maybe wrong because I have no group fuse in the system.
> 
> Without it my system complains about non readable /etc/fuser.conf. Then
> complains about unset user_allow_other needed for allow_root and fails.

Hi, Marek

Digged a bit more into this issue and noticed that you are right, since
fuse=2.9.3-5 /etc/fuse.conf is world readable, no need to add users to fuse
group, which was indeed dropped in that version. Just that all my systems
were set before and have

$ ls -la /etc/fuse.conf
-rw-r----- 1 root fuse 279 jul  2  2012 /etc/fuse.conf

as owner/group/permissions. Also, current README.Debian.gz info is from 2012,
before that removal.

Will fix this soon.

> >  * You may still need to enable user_allow_other in /etc/fuse.conf.
> 
> > Second statement "enabling user_allow_other in /etc/fuse.conf" was 
> > necessary to do. 
> 
> This is needed only if the allow_other or allow_root mount options are used
> (First one is the default set in /etc/security/pam_encfs.conf).
> Should not be needed otherwise. AFAIK allow_root is useful when a graphical
> display manager is used.

and will clarify a bit more this part.

Thanks for your contribution to Debian.

Regards,

-- 
Agustin

Reply via email to