cb67fa8330
Story: 2003389 Task: 24485 Change-Id: I04645b69e0e86e70cf168fbfe6c118af2cb961a3 Signed-off-by: slin14 <shuicheng.lin@intel.com>
28 lines
877 B
Diff
28 lines
877 B
Diff
From 6d54fd5dff19e69d2d9c01e508fd4276e4eaef5b Mon Sep 17 00:00:00 2001
|
|
From: Jim Somerville <Jim.Somerville@windriver.com>
|
|
Date: Tue, 12 Jul 2016 15:43:47 -0400
|
|
Subject: [PATCH 07/15] security make exports and fstab only root accessible
|
|
|
|
Apply a chmod of 600 to the two files.
|
|
|
|
Signed-off-by: Jim Somerville <Jim.Somerville@windriver.com>
|
|
---
|
|
SPECS/setup.spec | 1 +
|
|
1 file changed, 1 insertion(+)
|
|
|
|
diff --git a/SPECS/setup.spec b/SPECS/setup.spec
|
|
index db3ed17..a612d24 100644
|
|
--- a/SPECS/setup.spec
|
|
+++ b/SPECS/setup.spec
|
|
@@ -69,6 +69,7 @@ chmod 0644 %{buildroot}/var/log/lastlog
|
|
touch %{buildroot}/etc/fstab
|
|
touch %{buildroot}/etc/subuid
|
|
touch %{buildroot}/etc/subgid
|
|
+chmod 0600 %{buildroot}/etc/{exports,fstab}
|
|
install -m 644 %{SOURCE1} %{buildroot}/etc/
|
|
install -m 644 %{SOURCE2} %{buildroot}/etc/profile.d/prompt.sh
|
|
mkdir -p %{buildroot}/etc/profile.d
|
|
--
|
|
2.7.4
|
|
|