[Bug 174997] Re: World-readable config file is insecure
Daniel T Chen
crimsun at fungus.sh.nu
Tue Nov 18 02:26:15 UTC 2008
On 11/17/2008 08:54 PM, Tristan Schmelcher wrote:
> Can we not simply change the file's permissions in the .deb's internal
> tar archive? I recall testing other Ubuntu DDNS clients when I found
> this bug and others did _not_ have an analogous problem, so they must
> have found a decent solution.
>
Sure, we can add a line effecting it in debian/rules's install target,
but unfortunately that workaround does not change existing installs,
only fresh installs of the package.
--
World-readable config file is insecure
https://bugs.launchpad.net/bugs/174997
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list