diff --git a/README.md b/README.md index 4ac4fb6..2463c66 100644 --- a/README.md +++ b/README.md @@ -392,7 +392,9 @@ See: #### umask Default `umask` is set to `027` for files created by non-root users such as for -example user `user`. +example user `user`. Broken. Disabled. See: + +* https://github.com/Kicksecure/security-misc/issues/184 This is doing using pam module `pam_mkhomedir.so umask=027`. diff --git a/usr/share/pam-configs/umask-security-misc b/usr/share/pam-configs/umask-security-misc deleted file mode 100644 index 6436a56..0000000 --- a/usr/share/pam-configs/umask-security-misc +++ /dev/null @@ -1,8 +0,0 @@ -Name: Restrict umask to 027 (by package security-misc) -Default: yes -Priority: 100 -Session-Type: Additional -Session-Interactive-Only: yes -Session: - [success=1 default=ignore] pam_succeed_if.so uid eq 0 - optional pam_umask.so umask=027