Pavol Rusnak wrote:
On 07/26/2011 12:49 AM, Guido Berhoerster wrote:
/var/run/lightdm lightdm:lightdm 751 /var/log/lightdm lightdm:lightdm 750 /var/lib/lightdm lightdm:lightdm 750
The package is X11:xfce/lightdm.
Security team: is this the correct setup we could use? (User and group are created in %pre scriptlet of the package).
Almost. Log directories shouldn't be writable by the daemon user¹. cu Ludwig [1] http://article.gmane.org/gmane.comp.security.oss.general/4404 -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-packaging+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-packaging+help@opensuse.org