adduser maintainer here. Adduser currently has a single debconf
question, "Do you want system-wide readable home directories?",
resulting in the setting of DIR_MODE in adduser.conf.
Adduser is going to change its default in the future to 2700 due to a
number of sensible bug reports requesting more account security. The
only situation where the Debconf question still makes sense in these
days is the Installer, since when the Installer creates the first user account, the user did not yet have the opportunity to edit adduser.conf.
How does the Debian installer team think about adduser removing this
debconf question in a future release, causing the account created on installation to be created with home directory mode 2700?
adduser would become debconf-less that way, which would make the package
a lot easier.
Please keep me on Cc for your replies, I am not subscribed to
debian-boot.
People having strong opinions about this setting can always
adjust the configuration after the installation?
On Tue, Mar 22, 2022 at 02:54:36PM +0100, Cyril Brulebois wrote:
People having strong opinions about this setting can always
adjust the configuration after the installation?
Sure they can, it's a dpkg-conffile¹ after all, but they'll have to
manually adapt the account created by d-i if they want it differently.
They'll presumably also want to do that to deal with any other users
created before they change the setting, so it seems like no extra
effort really. I'd have thought that anyone with an opinion about
changing the default will also know they need to run that chmod.
Philip Hands <phil@hands.com> writes:
That's just a case of running `chmod g+rw /home/*` though isn't it?
I guess you meant `chmod g+r /home/*`.
That's just a case of running `chmod g+rw /home/*` though isn't it?
adduser maintainer here. Adduser currently has a single debconf
question, "Do you want system-wide readable home directories?",
resulting in the setting of DIR_MODE in adduser.conf.
How does the Debian installer team think about adduser removing this
debconf question in a future release, causing the account created on installation to be created with home directory mode 2700?
Hi
On Tue, Mar 22, 2022 at 12:01:03PM +0100, Marc Haber wrote:
adduser maintainer here. Adduser currently has a single debconf
question, "Do you want system-wide readable home directories?",
resulting in the setting of DIR_MODE in adduser.conf.
How does the Debian installer team think about adduser removing this
debconf question in a future release, causing the account created on
installation to be created with home directory mode 2700?
These changes are in unstable now. So please expect adduser in the
installer to ask one less question.
On Sun, Aug 21, 2022 at 10:06:58PM +0200, Marc Haber wrote:
Hi
On Tue, Mar 22, 2022 at 12:01:03PM +0100, Marc Haber wrote:
adduser maintainer here. Adduser currently has a single debconf
question, "Do you want system-wide readable home directories?",
resulting in the setting of DIR_MODE in adduser.conf.
How does the Debian installer team think about adduser removing this
debconf question in a future release, causing the account created on
installation to be created with home directory mode 2700?
These changes are in unstable now. So please expect adduser in the >installer to ask one less question.
ACK, thanks for the heads-up!
I cannot remember having seen any such message ("Do you want system-wide readable home directories?") during test installations BTW.
On Sun, Aug 28, 2022 at 02:07:08AM +0200, Holger Wansing wrote:
I cannot remember having seen any such message ("Do you want system-wide
readable home directories?") during test installations BTW.
Test installation in expert mode?
Hi,
Am 28. August 2022 09:12:40 MESZ schrieb Marc Haber <mh+debian-boot@zugschlus.de>:
On Sun, Aug 28, 2022 at 02:07:08AM +0200, Holger Wansing wrote:
I cannot remember having seen any such message ("Do you want system-wide >> readable home directories?") during test installations BTW.
Test installation in expert mode?
I'm aware of expert mode, but even there I don't remember any
such message.
There's a comment, that adduser is called in noninteractive mode
(user-setup package).
That explains, I guess.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 299 |
Nodes: | 16 (2 / 14) |
Uptime: | 82:34:37 |
Calls: | 6,696 |
Calls today: | 1 |
Files: | 12,229 |
Messages: | 5,347,908 |