On Tue, Oct 14, 2003 at 10:51:14PM +0200, Magos?nyi ?rp?d wrote: > Hi! > > I am asking your advice per policy section 10.9. [*] > > /etc/zorp is mode 0700 in upstream. In a typical setup, almost > every single file under this directory contains sensitive information: > firewall rules, cryptographic keys, etc. > > I think it justifies a lintian override. > > What do you think? > > [*] The rules in this section are guidelines for general use. If > necessary you may deviate from the details below. However, if you do so > you must make sure that what is done is secure and you should try to be > as consistent as possible with the rest of the system. You should > probably also discuss it on debian-devel first.
If the directory is justified, then the files should be 600 aswell. -- Debian - http://www.debian.org/ Linux 1394 - http://www.linux1394.org/ Subversion - http://subversion.tigris.org/ WatchGuard - http://www.watchguard.com/