On 02.11.2014 01:26, Matthijs Wensveen wrote: > Hi Markus, > > chown -R does not recurse into hidden directories. So all directories > and files beneath .config won't be touched by chown. > Why not just chown -R /var/lib/transmission-daemon itself? >
Hi Matthijs, I recommend to take a closer look at the complete patch. I also suggest to build and test transmission with this patch. A few months ago others already seemed to be satisfied with the results. In postinst the permissions are correctly set chperms debian-transmission debian-transmission 4750 /var/lib/transmission-daemon/.config/transmission-daemon There is no need to change the permissions for .config because /var/lib/transmission-daemon/.config/transmission-daemon is owned by transmission-daemon. Hence all configuration files can be accessed. I think from a security point of view it is sensible to restrict access only to required directories. You are right that chown -R /var/lib/transmission-daemon is identical to chown -R /var/lib/transmission-daemon/* It is easy to change that, if a Debian developer feels this should be changed. Regards, Markus
signature.asc
Description: OpenPGP digital signature
