Uploaded image for project: 'openATTIC'
  1. openATTIC
  2. OP-1791 Refactor distro specific and system configs
  3. OP-2935

/etc/sysconfig/openattic is installed world-readable on SUSE Linux

    XMLWordPrintable

    Details

      Description

      /etc/sysconfig/openattic is world-readable (root:root 644), which allows any local unprivileged user to read the login credentials for external services stored in that file. The permissions should be made more restrictive.

        Attachments

          Activity

            People

            Assignee:
            Unassigned
            Reporter:
            lgrimmer Grimmer, Lenz
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: