[arch-general] Why are CA certifcates writable for every user?

Patrick Burroughs (Celti) celti at celti.name
Thu Feb 5 19:20:31 UTC 2015


On Thu, 05 Feb 2015 20:12:31 +0100 Marcel Kleinfeller <marcel at oompf.de>
wrote:
> [...]
> lrwxrwxrwx 1 root root    102 21. Dez 17:56 
> Verisign_Class_1_Public_Primary_Certification_Authority_-_G3.pem -> 
> ../../ca-certificates/extracted/cadir/Verisign_Class_1_Public_Primary_Certification_Authority_-_G3.pem
> [...]

Those are symbolic links, as designated by the 'l' prefix in the
permissions. Symlinks in ls always show as having 777 permissions;
their actual permissions are those of the target.

Regards,
~Celti
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <https://lists.archlinux.org/pipermail/arch-general/attachments/20150205/a0ed894a/attachment.asc>


More information about the arch-general mailing list