From fb4254547b39160c410b1f83ed56aa7653291df1 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@riseup.net>
Date: Fri, 20 Dec 2019 06:32:04 -0500
Subject: [PATCH] comment

---
 usr/lib/security-misc/permission-hardening | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/usr/lib/security-misc/permission-hardening b/usr/lib/security-misc/permission-hardening
index 03eeecc..8d1c45f 100755
--- a/usr/lib/security-misc/permission-hardening
+++ b/usr/lib/security-misc/permission-hardening
@@ -50,6 +50,17 @@ add_nosuid_statoverride_entry() {
         new_mode="$existing_mode"
       fi
 
+## https://forums.whonix.org/t/permission-hardening/8655/10
+#       if [ "$new_mode" = "755" ]; then
+#         new_mode=744
+#       fi
+#       if [ "$new_mode" = "754" ]; then
+#         new_mode=744
+#       fi
+#       if [ "$new_mode" = "745" ]; then
+#         new_mode=744
+#       fi
+
       echo "INFO: $setuid_output $setguid_output found - file_name: '$file_name' | existing_mode: '$existing_mode' | new_mode: '$new_mode'"
 
       if dpkg-statoverride --list | grep -q "$file_name"; then