Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. gpa
Directory Use and Permissions
john at johnrshannon
Dec 31, 2004, 11:04 AM
Post #1 of 2 (1785 views)
Permalink
libassuan, pinentry, dirmngr and gnupg-1.9.14 all reference sharedstatedir and
localstatedir. What are the minimum permissions required for these
directories? Must they be world writeable? Can they be moved relative to
$HOME?

Thank You.
--
John R. Shannon
john@johnrshannon.com
john.r.shannon@saic.com
shannonjr@NetBSD.org
Re: Directory Use and Permissions [ In reply to ]
wk at gnupg
Jan 3, 2005, 2:17 AM
Post #2 of 2 (1716 views)
Permalink
On Fri, 31 Dec 2004 11:04:41 -0700, John R Shannon said:

> libassuan, pinentry, dirmngr and gnupg-1.9.14 all reference sharedstatedir and
> localstatedir. What are the minimum permissions required for these
> directories? Must they be world writeable? Can they be moved relative to
> $HOME?

AFAICS only dirmngr makes use of them:

AM_CPPFLAGS += -DDIRMNGR_SYSCONFDIR="\"$(sysconfdir)/@PACKAGE@\""
AM_CPPFLAGS += -DDIRMNGR_LIBEXECDIR="\"$(libexecdir)\""
AM_CPPFLAGS += -DDIRMNGR_DATADIR="\"$(localstatedir)/lib/@PACKAGE@\""
AM_CPPFLAGS += -DDIRMNGR_CACHEDIR="\"$(localstatedir)/cache/@PACKAGE@\""

The SYSCONFDIR is usually set to /etc/dirmngr and it may be world
readable except for the ldapservers.conf file which contains
passwords. As a configuration directory no write permissions are
required.

The DATADIR (/var/lib/dirmngr) currently does not need to be writable
but future versions of the dirmngr might want to write to it.

The CACHEDIR (/var/cache/dirmngr) obviously needs to be writable by
the dirmngr process.

You may move them relativly to $HOME.

Werner

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal