Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-13 10:49:26 -05:00
Code Issues Packages Projects Releases Wiki Activity

readme

Browse Source
This commit is contained in:
Patrick Schleizer 2019-08-24 16:39:56 +00:00
parent 0ae5c5ff14
commit 07cba361ed
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
1 changed files with 0 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
README.md
View File

@ -132,21 +132,6 @@ informational output during Linux PAM:
access rights restrictions:
* The default umask is changed to 027. This allows only the owner and group
to read and write to newly created files.
/etc/login.defs.security-misc
/usr/share/pam-configs/usergroups-security-misc
/etc/sudoers.d/umask-security-misc
* Enables pam_umask.so usergroups so group permissions are same as user
permissions. Debian by default uses User Private Groups (UPG).
https://wiki.debian.org/UserPrivateGroups
/usr/share/pam-configs/usergroups-security-misc
* Create home directory on login with umask 027 using
pam_mkhomedir.so umask=027
/usr/share/pam-configs/mkhomedir-security-misc
* Removes read, write and execute access for others for all users who have
home folders under folder /home by running for example
"chmod o-rwx /home/user"