summaryrefslogtreecommitdiffstats
path: root/wiki/src/contribute/design/persistence.mdwn
diff options
context:
space:
mode:
authorTails developers <amnesia@boum.org>2013-10-01 13:00:11 +0000
committerTails developers <amnesia@boum.org>2013-10-01 13:00:11 +0000
commit45df7e0f6349dda7b91cc93b8f58d23b12843ed5 (patch)
tree46f90e48ddf466b6cc4a779e58b9330088d9dd74 /wiki/src/contribute/design/persistence.mdwn
parentf38f36dc6b6feabfdf78ce2c32e138729ddf8465 (diff)
Document one more (upcoming) security-related behaviour.
Diffstat (limited to 'wiki/src/contribute/design/persistence.mdwn')
-rw-r--r--wiki/src/contribute/design/persistence.mdwn4
1 files changed, 2 insertions, 2 deletions
diff --git a/wiki/src/contribute/design/persistence.mdwn b/wiki/src/contribute/design/persistence.mdwn
index 1326c54..c695f03 100644
--- a/wiki/src/contribute/design/persistence.mdwn
+++ b/wiki/src/contribute/design/persistence.mdwn
@@ -389,8 +389,8 @@ by `root:root`, with permissions 0775:
The persistence configuration assistant is run with password-less sudo
as the `tails-persistence-setup` dedicated user. It creates and
updates configuration files that are owned by
-`tails-persistence-setup:tails-persistence-setup`, with
-permissions 0600.
+`tails-persistence-setup:tails-persistence-setup`, with permissions
+0600. It refuses to read configuration files with different permissions.
<!-- FIXME (0.22) -->
<!-- When persistence is activated at boot time, any persistent filesystem -->