https://bugzilla.suse.com/show_bug.cgi?id=1171174 https://bugzilla.suse.com/show_bug.cgi?id=1171174#c2 Georg Pfuetzenreuter <georg.pfuetzenreuter@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |georg.pfuetzenreuter@suse.c | |om --- Comment #2 from Georg Pfuetzenreuter <georg.pfuetzenreuter@suse.com> --- Hi! According to your comment the default permission set on SLE Micro should be "paranoid". Indeed, the `config.sh` script in https://build.opensuse.org/package/view_file/SUSE:SLE-15-SP4:Update:Products... "attempts" to change the security setting with a reference to this bug but due to not specifying the "-i" flag in the `sed` line the change is merely printed and never actually written to the file: ``` # fix security level (boo#1171174) sed -e '/^PERMISSION_SECURITY=s/easy/paranoid/' /etc/sysconfig/security chkstat --set --system ``` This can be confirmed in `/etc/sysconfig/security` on a fresh copy of the SLE Micro .raw image: ``` PERMISSION_SECURITY="easy local" ``` Is this expected? Maybe I am missing something! :-) Best, Georg -- You are receiving this mail because: You are the assignee for the bug.