Bug 4077

Summary: Wrong expected permissions with sectool -L 4 ?
Product: Mageia Reporter: Xuo <xuoy>
Component: RPM PackagesAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED DUPLICATE QA Contact:
Severity: normal    
Priority: Normal CC: luigiwalser
Version: 1   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
Whiteboard:
Source RPM: sectools CVE:
Status comment:

Description Xuo 2012-01-08 21:50:55 CET
Hi,

I receive reports from /etc/cron.daily/msec which runs sectool.
I want to use server level (level 4). This is what I have in /etc/security/msec/security.conf (BASE_LEVEL=secure).

Report says :
permissions ->
Error: Directory /boot has wrong permissions! The correct permissions should be 755.

Permissions I have on this directory are : drwx--x--- (710) which seems better than 755 sectool requires.
I've got the same thing for /root, /var/log, /var/spool/mail, ... where current permissions are more restrictive than the ones expected by sectool.

Thanks.

Xuo.
Comment 1 Manuel Hiebel 2012-01-09 23:49:48 CET
iirc it's a know bug (but not reported on the bugzilla)

Component: Security => RPM Packages
Source RPM: (none) => sectools

Comment 2 David Walser 2012-01-10 00:39:34 CET
This is one of several issues with sectool that is mentioned in Bug 2808.

*** This bug has been marked as a duplicate of bug 2808 ***

Status: NEW => RESOLVED
CC: (none) => luigiwalser
Resolution: (none) => DUPLICATE