diff options
| author | Sam Hartman <hartmans@debian.org> | 2024-01-15 15:21:22 -0700 |
|---|---|---|
| committer | Sam Hartman <hartmans@debian.org> | 2024-01-15 15:21:22 -0700 |
| commit | b01196659c785b04abc387d324fae61e2ec3b1aa (patch) | |
| tree | 68103083181ac00a9e7a82ebb4d6b4b6953bb242 | |
| parent | 02633059ea4329ccf468dff0119b0ef52106e83d (diff) | |
| parent | 56fb6980b1ff5936bb62e7c8313af8329e9f0d86 (diff) | |
Enable usergroups in pam_umask by default
Also, include pam_umask in common-session.
| -rw-r--r-- | debian/local/common-session | 2 | ||||
| -rw-r--r-- | debian/local/common-session-noninteractive | 2 |
2 files changed, 4 insertions, 0 deletions
diff --git a/debian/local/common-session b/debian/local/common-session index d0a229a6..1cd4f1ae 100644 --- a/debian/local/common-session +++ b/debian/local/common-session @@ -19,6 +19,8 @@ session requisite pam_deny.so # this avoids us returning an error just because nothing sets a success code # since the modules above will each just jump around session required pam_permit.so +# reset the umask for new sessions +session optional pam_umask.so # and here are more per-package modules (the "Additional" block) $session_additional # end of pam-auth-update config diff --git a/debian/local/common-session-noninteractive b/debian/local/common-session-noninteractive index 1dd1a172..d216f6ed 100644 --- a/debian/local/common-session-noninteractive +++ b/debian/local/common-session-noninteractive @@ -20,6 +20,8 @@ session requisite pam_deny.so # this avoids us returning an error just because nothing sets a success code # since the modules above will each just jump around session required pam_permit.so +# reset the umask for new sessions +session optional pam_umask.so # and here are more per-package modules (the "Additional" block) $session_nonint_additional # end of pam-auth-update config |