From 8bb76f3d44c1f5ffec8011819494db306a51d801 Mon Sep 17 00:00:00 2001
From: Ludovic Courtès <ludo@gnu.org>
Date: Mon, 4 Mar 2019 13:32:36 +0100
Subject: activation: Make home directories #o700 by default.

Until now they'd be #o755, except for /root, which is treated specially
in (gnu build install).

* gnu/build/activation.scm (activate-user-home): Chmod HOME to #o700.
Remove redundant 'unless system?'.
---
 gnu/build/activation.scm | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'gnu')

diff --git a/gnu/build/activation.scm b/gnu/build/activation.scm
index 0e77677de1..d516f5bdc9 100644
--- a/gnu/build/activation.scm
+++ b/gnu/build/activation.scm
@@ -298,9 +298,9 @@ they already exist."
                 (gid (passwd:gid pw)))
            (mkdir-p home)
            (chown home uid gid)
-           (unless system?
-             (copy-account-skeletons home
-                                     #:uid uid #:gid gid)))))))
+           (chmod home #o700)
+           (copy-account-skeletons home
+                                   #:uid uid #:gid gid))))))
 
   (for-each ensure-user-home users))
 
-- 
cgit v1.2.3