Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-05-07 05:24:59 -04:00
Code Issues Projects Releases Packages Wiki Activity

Enable umask hardening

Browse source
This commit is contained in:
Aaron Rainbolt 2024-11-28 15:20:57 -06:00
parent 59299a6639
commit 1708a03e1e
No known key found for this signature in database
GPG key ID: A709160D73C79109
3 changed files with 22 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

8
usr/share/pam-configs/umask-security-misc Normal file
View file

@ -0,0 +1,8 @@
Name: Restrict umask to 027 (by package security-misc)
Default: yes
Priority: 100
Session-Type: Additional
Session-Interactive-Only: yes
Session:
[success=1 default=ignore] pam_succeed_if.so uid eq 0
optional pam_umask.so umask=027