Bug#518042: marked as done (pam-auth-update honours umask, wrong file permissions)

[Debian Bug Tracking System]

Your message dated Wed, 04 Mar 2009 01:47:03 +0000
with message-id <e1legcn-0002gw...@ries.debian.org>
and subject line Bug#518042: fixed in pam 1.0.1-7
has caused the Debian Bug report #518042,
regarding pam-auth-update honours umask, wrong file permissions
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
518042: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518042
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: libpam-runtime
Version: 1.0.1-6
Severity: important

My umask is 077 and as a result, the files written by
pam-auth-update are mode 0600. I think you probably want to force
them to 0640 instead.

Thanks,

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-1-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libpam-runtime depends on:
ii  debconf                       1.5.25     Debian configuration management sy

libpam-runtime recommends no packages.

libpam-runtime suggests no packages.

-- debconf-show failed


-- 
 .''`.   martin f. krafft <madd...@d.o>      Related projects:
: :'  :  proud Debian developer               http://debiansystem.info
`. `'`   http://people.debian.org/~madduck    http://vcs-pkg.org
  `-  Debian - when you have better things to do than fixing systems

digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/)

--- End Message ---

--- Begin Message ---

Source: pam
Source-Version: 1.0.1-7

We believe that the bug you reported is fixed in the latest version of
pam, which is due to be installed in the Debian FTP archive:

libpam-cracklib_1.0.1-7_amd64.deb
  to pool/main/p/pam/libpam-cracklib_1.0.1-7_amd64.deb
libpam-doc_1.0.1-7_all.deb
  to pool/main/p/pam/libpam-doc_1.0.1-7_all.deb
libpam-modules_1.0.1-7_amd64.deb
  to pool/main/p/pam/libpam-modules_1.0.1-7_amd64.deb
libpam-runtime_1.0.1-7_all.deb
  to pool/main/p/pam/libpam-runtime_1.0.1-7_all.deb
libpam0g-dev_1.0.1-7_amd64.deb
  to pool/main/p/pam/libpam0g-dev_1.0.1-7_amd64.deb
libpam0g_1.0.1-7_amd64.deb
  to pool/main/p/pam/libpam0g_1.0.1-7_amd64.deb
pam_1.0.1-7.diff.gz
  to pool/main/p/pam/pam_1.0.1-7.diff.gz
pam_1.0.1-7.dsc
  to pool/main/p/pam/pam_1.0.1-7.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 518...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Steve Langasek <vor...@debian.org> (supplier of updated pam package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 03 Mar 2009 17:18:42 -0800
Source: pam
Binary: libpam0g libpam-modules libpam-runtime libpam0g-dev libpam-cracklib 
libpam-doc
Architecture: source all amd64
Version: 1.0.1-7
Distribution: unstable
Urgency: low
Maintainer: Steve Langasek <vor...@debian.org>
Changed-By: Steve Langasek <vor...@debian.org>
Description: 
 libpam-cracklib - PAM module to enable cracklib support
 libpam-doc - Documentation of PAM
 libpam-modules - Pluggable Authentication Modules for PAM
 libpam-runtime - Runtime support for the PAM library
 libpam0g   - Pluggable Authentication Modules library
 libpam0g-dev - Development files for PAM
Closes: 518042
Changes: 
 pam (1.0.1-7) unstable; urgency=low
 .
   * 027_pam_limits_better_init_allow_explicit_root:
     - fix the patch so that our limit resets are actually *applied*,
       which has apparently been broken for who knows how long!
     - shadow the finite kernel defaults for RLIMIT_SIGPENDING and
       RLIMIT_MSGQUEUE as well, so that the preceding change doesn't
       suddenly expose systems to DoS or other issues.
     - include documentation in the patch, giving examples of how to set
       limits for root.  Thanks to Jonathan Marsden.
   * pam-auth-update: swap out known md5sums from intrepid pre-release
     versions with the md5sums from the released intrepid version
   * pam-auth-update: set the umask, so we don't accidentally mark
     /etc/pam.d/common-* unreadable.  Thanks to Martin Krafft for catching.
     Closes: #518042.
Checksums-Sha1: 
 91875026e7ab9469aeb5ac61983031369ba0676f 1472 pam_1.0.1-7.dsc
 b4ac6587e0b09c01470fe308414e9f7abe0a0e63 156870 pam_1.0.1-7.diff.gz
 1f5694da034d58cfb0acd81101f42f29b231d119 176714 libpam-runtime_1.0.1-7_all.deb
 ab0d515624b33f6d8090a7de6c8ba21461e2d755 288018 libpam-doc_1.0.1-7_all.deb
 36a56d7443730ea2cef32edc4d93975cb4e7ec6e 106966 libpam0g_1.0.1-7_amd64.deb
 35a970df40cd0a75671f3639d5ff52710c7bb8ed 307696 
libpam-modules_1.0.1-7_amd64.deb
 9bb86d168204f7cbeeda8b1c966312de7adfcea1 164098 libpam0g-dev_1.0.1-7_amd64.deb
 56c297de8c587bda3ae225204e1682d080176650 66538 
libpam-cracklib_1.0.1-7_amd64.deb
Checksums-Sha256: 
 74650c2446243e463685d62fefbbfccd4c412a7fdf03c78c4bd31cf5779bea6c 1472 
pam_1.0.1-7.dsc
 25037cb6a4d947e2033afe1b4caeabeada46e59a5e634196cf9cf0a362a670c2 156870 
pam_1.0.1-7.diff.gz
 d9a5ddf29737b6ee3e9aed73169bd335759d9e85259e50ca148629dfbc74b677 176714 
libpam-runtime_1.0.1-7_all.deb
 72c48e5f98fee7f22b1582395da5ed83ae87386b2fa431a8e962935380098b1e 288018 
libpam-doc_1.0.1-7_all.deb
 b18c603b5584ecc02c871b288c464c3d58ea7601a974e63c878ca0996ed72a6c 106966 
libpam0g_1.0.1-7_amd64.deb
 fe59b4797eaf4c8570fb6d14fa7188317cf71d82aeb8065f16514a7cc5126e06 307696 
libpam-modules_1.0.1-7_amd64.deb
 d2a210365c84b7a5117818cd76d64c93f205cf472ddcd2857f6f481653791732 164098 
libpam0g-dev_1.0.1-7_amd64.deb
 8c8a32b3ff29af2af3151a2054a9a7a28e3521edd32c66170b2648110cb79a3f 66538 
libpam-cracklib_1.0.1-7_amd64.deb
Files: 
 ceca62ae3055e42de41c7a49798cb52b 1472 libs optional pam_1.0.1-7.dsc
 b8eaaff39dbd108dd64b97e9e1c08299 156870 libs optional pam_1.0.1-7.diff.gz
 21dddf6028347a6a3ab15e1de23fb417 176714 admin required 
libpam-runtime_1.0.1-7_all.deb
 bd3f4dbc2bf5c73cdc4057d575ed1348 288018 doc optional libpam-doc_1.0.1-7_all.deb
 fd466d6a409de3b98d78880970cebde6 106966 libs required 
libpam0g_1.0.1-7_amd64.deb
 0b2c820947caa3bdf5ebd5d4c872e913 307696 libs required 
libpam-modules_1.0.1-7_amd64.deb
 78ac59c834c0d0f054d92559b1e22f2c 164098 libdevel optional 
libpam0g-dev_1.0.1-7_amd64.deb
 365921ea2ed192ed5d8b4d81fc5e2f0c 66538 libs optional 
libpam-cracklib_1.0.1-7_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFJrdiKKN6ufymYLloRAkrAAJ9fF71czyF+AsVV6WLU/M/fdnjL6ACfcqU1
qtWtaiwyg9U7Dmov1ho8eHs=
=RhQJ
-----END PGP SIGNATURE-----

--- End Message ---