Project

General

Profile

Actions

Bug #15054

open

Permissions on tmpfs RAM disk for ``/var`` are too lenient

Added by Jim Pingle 3 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Operating System
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
24.03
Release Notes:
Default
Affected Version:
Affected Architecture:

Description

The code in source:src/etc/rc.ramdisk_functions.sh#L133 configures any tmpfs RAM disk with 1777 permissions, so both /tmp and /var get set this way.

Those permissions are OK for /tmp but for /var it should be using mode 1755.

The relaxed restrictions on /var prevent some daemons from running in a chroot inside that directory, such as the LADVD package.

No data to display

Actions

Also available in: Atom PDF