Hello,
While doing a security audit, I noticed that Enpass raised a few red flags on Fedora 39 because of very loose permissions set by default. While that isn't an issue for most of the files (among which many icons), I am more concerned to see default 777 permissions on the binaries for the importer, the wifi sync server and the Enpass app itself, or even 666 permissions on qt.conf.
I was wondering about the need for such permissive defaults on an app designed to hold sensitive information ?
Many thanks for your help.