[Swan-commit] Changes to ref refs/heads/master
Paul Wouters
paul at vault.libreswan.fi
Wed Apr 10 20:17:14 EEST 2013
New commits:
commit be90ed4683612df489afec74fb54404327bcaa58
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Apr 10 13:16:50 2013 -0400
* packaging: changed remaining $RPM_BUILD_ROOT to %{buildroot}
commit d2474fcd5d9a7ffad5c8a774d4bf0873bb775422
Author: Paul Wouters <pwouters at redhat.com>
Date: Wed Apr 10 13:10:41 2013 -0400
* permissions: open up /var/run/pluto, close down /etc/ipsec.d
The rundir (default /var/run/pluto) is changed from 700 to 755, to
allow non-root processes to read pluto.pid (eg monitor scripts)
The ipsecddir (default /etc/ipsec.d) and its subdirectories is changed
from 755 to 700. This was already the case for some distributions
(Fedora, RHEL). This provides a little more privacy about which IPsec
tunnels are configured, which certificates are known, etc.
commit 4bbdd9fa73bd3c22958d794f71beddac270b6dd9
Author: Paul Wouters <pwouters at redhat.com>
Date: Tue Apr 9 23:45:56 2013 -0400
* added comment for unknown juniper vendorid.
More information about the Swan-commit
mailing list