Some files in users/root home have too relaxed permissions set

REPRODUCIBILITY: 100%
OS VERSION: 4.5.0.19
HARDWARE: Xperia 10 II
UI LANGUAGE: English
REGRESSION: No, AFAIK

DESCRIPTION:

these files .wget-hsts .tcshrc .profile .cshrc .bashrc .bash_profile .bash_logout .bash_history .ash_history shoud have 600 permission set for every user but instead they are readable by every user. Also those in the root folder.

[root@sfos ~]# echo pippo > pippo
[root@sfos ~]# ls -al pippo
-rw-r--r--    1 root     root             6 Jun 24 15:29 pippo

[defaultuser@sfos ~]$ cat /root/pippo
cat: can't open '/root/pippo': Permission denied

PRECONDITIONS:

none

STEPS TO REPRODUCE:

none

EXPECTED RESULT:

Those files should have 600 permissions set

ACTUAL RESULT:

They have 644 permissions set, instead.

MODIFICATIONS:

The permissions of the root folder prevent that files can be read by a non-root user. However, the files permission set is wrong.

ADDITIONAL INFORMATION:

none

1 Like