30 Aug
2023
30 Aug
'23
01:10
Am 11.08.23 um 16:49 schrieb Joe Salmeri:
Since the default install uses the easy permissions, would it make sense for the RPMs to match what the easy permissions are.
If the admin switches to more restrictive permissions, then they would get the messages ( which makes sense to me ).
The documentation [1] says
Permissions attributes in the package should reflect the setting of the secure level (/etc/permissions.secure).
Packaging with easy permissions would lead to the easy ("insecure") settings being in effect for a brief window of time, which of course reduces security. So this seems unlikely to change. [1] <https://en.opensuse.org/openSUSE:Packaging_Conventions_RPM_Macros#%verify_permissions>