executable-is-not-world-readable
All executables should be readable by any user. Since anyone can download the Debian package and obtain a copy of the executable, no security is gained by making the executable unreadable even for setuid binaries. If only members of a certain group may execute this file, remove execute permission for world, but leave read permission.
Severity: | warning |
Experimental: | false |
See also
Permissions and owners (Section 10.9) in the Debian Policy Manual
- list of all the affected packages
- the source of this tag