[Swan-commit] Changes to ref refs/heads/master

Paul Wouters paul at vault.libreswan.fi
Wed Apr 10 20:17:14 EEST 2013


New commits:
commit be90ed4683612df489afec74fb54404327bcaa58
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Apr 10 13:16:50 2013 -0400

    * packaging: changed remaining $RPM_BUILD_ROOT to %{buildroot}

commit d2474fcd5d9a7ffad5c8a774d4bf0873bb775422
Author: Paul Wouters <pwouters at redhat.com>
Date:   Wed Apr 10 13:10:41 2013 -0400

    * permissions: open up /var/run/pluto, close down /etc/ipsec.d
    
    The rundir (default /var/run/pluto) is changed from 700 to 755, to
    allow non-root processes to read pluto.pid (eg monitor scripts)
    
    The ipsecddir (default /etc/ipsec.d) and its subdirectories is changed
    from 755 to 700. This was already the case for some distributions
    (Fedora, RHEL). This provides a little more privacy about which IPsec
    tunnels are configured, which certificates are known, etc.

commit 4bbdd9fa73bd3c22958d794f71beddac270b6dd9
Author: Paul Wouters <pwouters at redhat.com>
Date:   Tue Apr 9 23:45:56 2013 -0400

    * added comment for unknown juniper vendorid.



More information about the Swan-commit mailing list