summaryrefslogtreecommitdiff
path: root/debian
diff options
context:
space:
mode:
Diffstat (limited to 'debian')
-rw-r--r--debian/changelog3
-rw-r--r--debian/strongswan-swanctl.lintian-overrides6
2 files changed, 9 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index 523670ada..e5e71803f 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -20,6 +20,9 @@ strongswan (5.6.0-1) UNRELEASED; urgency=medium
closes: #866327
* debian/libcharon-extra-plugins.install:
- install pt-tls-client in /u/b and also install its manpage.
+ * debian/strongswan-swanctl.lintian-overrides:
+ - add lintian overrides for private keys directories using 700
+ permissions.
-- Yves-Alexis Perez <corsac@debian.org> Fri, 01 Sep 2017 17:21:45 +0200
diff --git a/debian/strongswan-swanctl.lintian-overrides b/debian/strongswan-swanctl.lintian-overrides
new file mode 100644
index 000000000..1af6f10d2
--- /dev/null
+++ b/debian/strongswan-swanctl.lintian-overrides
@@ -0,0 +1,6 @@
+# directories for private keys so tighten the permissions
+strongswan-swanctl: non-standard-dir-perm etc/swanctl/bliss/ 0700 != 0755
+strongswan-swanctl: non-standard-dir-perm etc/swanctl/ecdsa/ 0700 != 0755
+strongswan-swanctl: non-standard-dir-perm etc/swanctl/pkcs8/ 0700 != 0755
+strongswan-swanctl: non-standard-dir-perm etc/swanctl/private/ 0700 != 0755
+strongswan-swanctl: non-standard-dir-perm etc/swanctl/rsa/ 0700 != 0755
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-14 11:58:55 +0000