diff options
author | Topi Miettinen <toiwoton@gmail.com> | 2020-01-18 15:16:10 +0000 |
---|---|---|
committer | Ben Hutchings <ben@decadent.org.uk> | 2020-01-18 15:16:10 +0000 |
commit | 55afeec83980546928c5b9506d2ae67c6e7a6053 (patch) | |
tree | d9436a5a3ff255e46b7f9c6b92161fa9146d72c4 | |
parent | e7e6b5a81bbcdbf38cbfb23ca5bd2d1e9e522efc (diff) |
Tighten permissions for /run/initramfs
/run/initramfs contains a log file from fsck of root file system,
which could perhaps contain sensitive information, for example if
/home or /var are also located there and fsck is triggered.
Let's tighten the permissions to 0700.
Signed-off-by: Topi Miettinen <toiwoton@gmail.com>
-rwxr-xr-x | init | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -208,7 +208,7 @@ else fi mount -t tmpfs -o "nodev,noexec,nosuid,size=${RUNSIZE:-10%},mode=0755" tmpfs /run -mkdir -m 0755 /run/initramfs +mkdir -m 0700 /run/initramfs if [ -n "$log_output" ]; then exec >$log_output 2>&1 |