From a3b03da30c116e6fc60e0e4c38fb124fa693e501 Mon Sep 17 00:00:00 2001 From: IgnorantGuru Date: Sat, 7 Dec 2013 04:40:55 -0700 Subject: [PATCH] fix default udevil.conf allowed_options missing fmask=0133 #35 --- ChangeLog | 2 +- etc/udevil.conf | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/ChangeLog b/ChangeLog index 00da6e5..00df727 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,5 +1,5 @@ 0.4.2+ - + fix default udevil.conf allowed_options missing fmask=0133 #35 0.4.2 2013-12-04: move packages to pkg branch debian pkgs libudev0 | libudev1 diff --git a/etc/udevil.conf b/etc/udevil.conf index 83284be..cdbe224 100644 --- a/etc/udevil.conf +++ b/etc/udevil.conf @@ -241,7 +241,7 @@ default_options_ramfs = nosuid, noexec, nodev, noatime, uid=$UID, gid=$GID # and GID. # If you want to forbid remounts, remove 'remount' from here. # WARNING: OPTIONS HERE CAN CAUSE SERIOUS SECURITY PROBLEMS - CHOOSE CAREFULLY -allowed_options = nosuid, noexec, nodev, noatime, fmask=0022, dmask=0022, uid=$UID, gid=$GID, ro, rw, sync, flush, iocharset=*, utf8, remount +allowed_options = nosuid, noexec, nodev, noatime, fmask=0133, dmask=0022, uid=$UID, gid=$GID, ro, rw, sync, flush, iocharset=*, utf8, remount allowed_options_nfs = nosuid, noexec, nodev, noatime, ro, rw, sync, remount, port=*, rsize=*, wsize=*, hard, proto=*, timeo=*, retrans=* allowed_options_cifs = nosuid, noexec, nodev, ro, rw, remount, port=*, user=*, username=*, pass=*, password=*, guest, domain=*, uid=$UID, gid=$GID, credentials=* allowed_options_smbfs = nosuid, noexec, nodev, ro, rw, remount, port=*, user=*, username=*, pass=*, password=*, guest, domain=*, uid=$UID, gid=$GID, credentials=*