Standard daily security output generated by FreeBSD running as guest inside Hyper-V shows: Checking negative group permissions: 16395 -rw----r-- 1 root wheel 0 Apr 15 14:53:24 2016 /var/db/hyperv/pool/.kvp_pool_0 16396 -rw----r-- 1 root wheel 0 Apr 15 14:53:24 2016 /var/db/hyperv/pool/.kvp_pool_1 16397 -rw----r-- 1 root wheel 0 Apr 15 14:53:24 2016 /var/db/hyperv/pool/.kvp_pool_2 16398 -rw----r-- 1 root wheel 28160 Apr 20 16:27:11 2016 /var/db/hyperv/pool/.kvp_pool_3 16399 -rw----r-- 1 root wheel 0 Apr 15 14:53:24 2016 /var/db/hyperv/pool/.kvp_pool_4 Either these files should be created with more sane permissions, or this check should be relaxed to skip them.
I can confirm this is still an issue on FreeBSD 11.0
A commit references this bug: Author: sephe Date: Thu May 4 01:46:05 UTC 2017 New revision: 317783 URL: https://svnweb.freebsd.org/changeset/base/317783 Log: hyperv/kvp: Fix pool direcrory and file permission PR: 209385 MFC after: 2 weeks Sponsored by: Microsoft Changes: head/contrib/hyperv/tools/hv_kvp_daemon.c
A commit references this bug: Author: sephe Date: Thu May 18 01:32:51 UTC 2017 New revision: 318433 URL: https://svnweb.freebsd.org/changeset/base/318433 Log: MFC 317783 hyperv/kvp: Fix pool direcrory and file permission PR: 209385 Sponsored by: Microsoft Changes: _U stable/11/ stable/11/contrib/hyperv/tools/hv_kvp_daemon.c
A commit references this bug: Author: sephe Date: Thu May 18 01:42:55 UTC 2017 New revision: 318435 URL: https://svnweb.freebsd.org/changeset/base/318435 Log: MFC 317783 hyperv/kvp: Fix pool direcrory and file permission PR: 209385 Sponsored by: Microsoft Changes: _U stable/10/ stable/10/contrib/hyperv/tools/hv_kvp_daemon.c
Patched and MFC'd.