You are not logged in. Please login or register.
We are very pleased and happy to announce the newest release of Hyperbola GNU/Linux-libre with v0.4.4.
See our official news for further details.
HyperForum → System → initramfs are world readable
Hi,
I'm trying to install Hyperbola on my x200, I find out the /boot/initramfs* are world readable(-rw-r--r--). It's a huge problem when you use luks keyfiles inside initramfs to auto unlock luks disk.
In debian, I can use a "UMASK=0077" in config file.
In Arch, mkinitramfs seem use umask 0077 by default (ref:https://bugs.archlinux.org/task/69024). But mkinitramfs in Hyperbola seems little bit old?
Sorry about my bad English:(
See: Hyperbola is NOT Arch GNU/Linux and also not GNU/Linux in general since 0.4. We do not orient on those defaults as we are on the way towards HyperbolaBSD. So luks is also no real point of interest for us as this is not supported on BSD itself. We do not use any copies from others and create our own defined packages.
So we have also no interest to upgrade mkinitramfs for the moment. For sure: If you have interest to create a different solution, we can take together a look into this and can create a solution for your question based on the used versions here at Hyperbola. We do not define software working as "old" when it works nevertheless.
You can surely point out towards bugs and issues stated at Arch GNU/Linux. But this does not mean we will follow their solutions or their packaging. We even cannot as we do neither use systemd nor udev for sure and plan even to remove the support for udev complete in the near future. So also here: No interest from our side to keep those.
hmmm, I know most of thing in your reply, that why I'm chosen Hyperbola on my laptop. I just want to point out that this is a issue fixed in Arch, but still present in Hyperbola. At least somebody use Hyperbola in this way, and may not noticed their keyfile is under risk.
Anyway, it just a simple one line fix add to mkinitramfs. If developer team not interested in this kind of fix, that's fine. I just add it to file locally.
Thanks for all Hyperbola Developers.
A Simple fix, if anyone search for this problem.
492,493d491
< umask 0077
<Oh, do not get me wrong: If you have already a fix, I will surely implement it as soon as possible for 0.4.5. 
I just meant that we do not update. I have spoken with the rest of the team and we will get the code now in our git-repository making patching more easy.
HyperForum → System → initramfs are world readable
Powered by PunBB, supported by Informer Technologies, Inc.