From 80bd314436b99b723359f25e52bbd14683929b56 Mon Sep 17 00:00:00 2001 From: Patrick Schleizer Date: Wed, 22 Jan 2025 08:25:14 -0500 Subject: [PATCH] add `.whonix` files to hardcoded files --- .../permission-hardener-existing-mode-legacy-hardcoded | 2 ++ .../security-misc/permission-hardener-new-mode-legacy-hardcoded | 2 ++ 2 files changed, 4 insertions(+) diff --git a/usr/share/security-misc/permission-hardener-existing-mode-legacy-hardcoded b/usr/share/security-misc/permission-hardener-existing-mode-legacy-hardcoded index 7f87a45..4d7dc17 100644 --- a/usr/share/security-misc/permission-hardener-existing-mode-legacy-hardcoded +++ b/usr/share/security-misc/permission-hardener-existing-mode-legacy-hardcoded @@ -16,6 +16,7 @@ root root 700 /root root root 755 /etc/cron.daily root root 755 /bin/ping root root 777 /etc/motd.kicksecure +root root 777 /etc/motd.whonix root root 755 /boot root root 755 /home root shadow 2755 /usr/bin/chage @@ -28,6 +29,7 @@ root root 644 /etc/passwd root root 755 /usr/src root root 4755 /usr/bin/mount root root 777 /etc/issue.kicksecure +root root 777 /etc/issue.whonix root root 755 /etc/cron.d root root 4755 /usr/bin/sudo root root 4755 /usr/bin/pkexec diff --git a/usr/share/security-misc/permission-hardener-new-mode-legacy-hardcoded b/usr/share/security-misc/permission-hardener-new-mode-legacy-hardcoded index 37f1088..d1b3a80 100644 --- a/usr/share/security-misc/permission-hardener-new-mode-legacy-hardcoded +++ b/usr/share/security-misc/permission-hardener-new-mode-legacy-hardcoded @@ -10,6 +10,7 @@ root root 744 /usr/bin/su root root 700 /etc/cron.daily root root 755 /bin/ping root root 644 /etc/motd.kicksecure +root root 644 /etc/motd.whonix root _ssh 744 /usr/bin/ssh-agent root root 700 /boot root shadow 744 /usr/bin/chage @@ -21,4 +22,5 @@ root root 600 /etc/permission-hardener.d root root 700 /usr/src root root 755 /usr/bin/mount root root 644 /etc/issue.kicksecure +root root 644 /etc/issue.whonix root root 700 /etc/cron.d