Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-05-15 03:52:13 -04:00
Code Issues Projects Releases Packages Wiki Activity

Make permission-hardener always apply changes to real files, not symlinks

Browse source
This commit is contained in:
Aaron Rainbolt 2025-01-21 21:05:03 -06:00
parent ed767e00b0
commit 5e60416c86
No known key found for this signature in database
GPG key ID: A709160D73C79109
3 changed files with 25 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

4
usr/share/security-misc/permission-hardener-existing-mode-legacy-hardcoded
View file

@ -15,7 +15,7 @@ root root 644 /etc/hosts.allow
root root 700 /root
root root 755 /etc/cron.daily
root root 755 /bin/ping
root root 777 /etc/motd
root root 777 /etc/motd.kicksecure
root root 755 /boot
root root 755 /home
root shadow 2755 /usr/bin/chage
@ -27,7 +27,7 @@ root root 755 /etc/permission-hardener.d
root root 644 /etc/passwd
root root 755 /usr/src
root root 4755 /usr/bin/mount
root root 777 /etc/issue
root root 777 /etc/issue.kicksecure
root root 755 /etc/cron.d
root root 4755 /usr/bin/sudo
root root 4755 /usr/bin/pkexec

4
usr/share/security-misc/permission-hardener-new-mode-legacy-hardcoded
View file

@ -9,7 +9,7 @@ root root 700 /etc/cron.weekly
root root 744 /usr/bin/su
root root 700 /etc/cron.daily
root root 755 /bin/ping
root root 644 /etc/motd
root root 644 /etc/motd.kicksecure
root _ssh 744 /usr/bin/ssh-agent
root root 700 /boot
root shadow 744 /usr/bin/chage
@ -20,5 +20,5 @@ root root 744 /usr/bin/chfn
root root 600 /etc/permission-hardener.d
root root 700 /usr/src
root root 755 /usr/bin/mount
root root 644 /etc/issue
root root 644 /etc/issue.kicksecure
root root 700 /etc/cron.d