On Sun, May 13, 2007 at 11:36:36PM +0200, Francesco Poli <[EMAIL PROTECTED]> was heard to say: > I've just found out where the problem lies. > While hardening the system I set 007 as default umask for regular user > and as system-wide setting. I also had set umask 007 for root: since > /var/lib/aptitude/pkgstates is apparently rotated, it's recreated > everytime its content changes, and its permissions are set accordingly > to root's umask.
Glad to here what the problem was. I think, though, that I can do what other programs apparently do and manually chmod the pkgstates file after I create it. There's nothing very security-sensitive in pkgstates (and you can cut off access to the /var/lib/aptitude directory if you really want to hide it to normal users). Daniel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
