Do /usr/local and /usr/local/bin need to be group-writable? If so, why?

linux file-permissions debian permissions debian-squeeze

Solution 1:

it appears that /usr/local and /usr/local/bin (both of which are owned by root:staff) are group-writable by default on Debian Squeeze.

This is, at present, by design, you may review the team's missives on the purpose/importance of this choice in the following thread: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538392

Is there a reason that they need to be?

These directories only need owner root.staff if you intend to utilize the staff group as the Debian team chose. Also, by default, the staff group has no members, you would need to add users manually to delegate this access permission. As the "bug" is marked as "wishlist", the door is open for this configuration to be reverted to the default-defaults, as most other distros use.

Avoiding any Holy Wars of the Debian mailing list, I would suggest you can chown the directories root.root and just use sudo, su as most everyone else would just do.

Related

Can you set Postfix to enforce TLS on incoming email only from certain domains or IPs?
How to get iostat of a single process
Puppet file transfer slow
How can i enable byte range request?
How can I run a PowerShell function remotely?
Why ARP request is unicast?
uwsgi.ini configuration for python apps
How to determine who installed a program?
Nginx reverse cache 301 redirects (permanent)
how to undo an iptables rule that I did?
interpreting stickers on RAM
NTP Server with no connection to the internet