Permissions on private directory.

[Tim Potter]

Steve Langasek writes:

> > So if UNIX users can read these files then you could be in a bit
> > of security trouble.
> 
> I don't dispute that the smbpasswd file and secrets.tdb need to
> be protected from non-root users; but many systems have shadow
> password files with hashes so weak that they're nearly
> plaintext equivalent, yet I've never heard anyone object that
> it's insecure to keep this file in the public /etc directory --

Good point.  I can't think of a reason why this isn't the case.
Perhaps someone else knows some of the history of the privatedir
stuff.


Tim.