Bug#800435: marked as done (redis-server: redis.conf is world-readable)

[Debian Bug Tracking System]

Your message dated Tue, 29 Sep 2015 16:21:28 +0000
with message-id <e1zgxei-0006fa...@franck.debian.org>
and subject line Bug#800435: fixed in redis 2:3.0.4-5
has caused the Debian Bug report #800435,
regarding redis-server: redis.conf is world-readable
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
800435: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800435
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: redis-server
Version: 2:2.8.17-1+deb8u1
Severity: normal

Dear Maintainer,

the redis configuration is installed world-readable,
and may contain passwords (masterauth, requirepass):

-rw-r--r-- 1 root root 32801 Jun  5 15:12 /etc/redis/redis.conf


-- System Information:
Debian Release: 8.2
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages redis-server depends on:
ii  adduser              3.113+nmu3
ii  init-system-helpers  1.22
ii  libc6                2.19-18+deb8u1
ii  libjemalloc1         3.6.0-3
ii  redis-tools          2:2.8.17-1+deb8u1

redis-server recommends no packages.

redis-server suggests no packages.

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: redis
Source-Version: 2:3.0.4-5

We believe that the bug you reported is fixed in the latest version of
redis, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 800...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Chris Lamb <la...@debian.org> (supplier of updated redis package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 29 Sep 2015 17:42:22 +0200
Source: redis
Binary: redis-server redis-tools redis-sentinel
Architecture: source amd64
Version: 2:3.0.4-5
Distribution: unstable
Urgency: medium
Maintainer: Chris Lamb <la...@debian.org>
Changed-By: Chris Lamb <la...@debian.org>
Description:
 redis-sentinel - Persistent key-value database with network interface 
(monitoring)
 redis-server - Persistent key-value database with network interface
 redis-tools - Persistent key-value database with network interface (client)
Closes: 800435
Changes:
 redis (2:3.0.4-5) unstable; urgency=medium
 .
   * Don't install /etc/redis/{redis,sentinel}.conf world-readable as they may
     contain passwords, additionally setting the ownership to ensure they can
     read their own configuration. (Closes: #800435)
   * Disable CAP_SYS_PTRACE in systemd service files
   * Add Documentation= header to systemd service files.
   * Add a "redis" systemd unit alias.
Checksums-Sha1:
 b200a317476f7f8d2d0a878ce9a8a014d5831c80 1961 redis_3.0.4-5.dsc
 107565301dc80dbb64f04d66c8b694384f4fe655 30072 redis_3.0.4-5.debian.tar.xz
 967158545891a1613dba9bf0ed6cc73421175cfe 15818 redis-sentinel_3.0.4-5_amd64.deb
 cafad9e19e5b8b6b75766e5a7637e0946767e2dc 349570 redis-server_3.0.4-5_amd64.deb
 cc732c2676a83f09a474ed03e9c046d64465e2b1 98368 redis-tools_3.0.4-5_amd64.deb
Checksums-Sha256:
 e5069e1af96fb5c05f491357525785806f3b2378531a773bfc677847c4d141b8 1961 
redis_3.0.4-5.dsc
 9a20b58f3eb02b636cc7f3443492c9662a758ea8a87d5969ed9db8f4edddcbbf 30072 
redis_3.0.4-5.debian.tar.xz
 ca4c6fc0f45bde9df39dade26026658c8106efeca43aa6e82003f0695ea4c974 15818 
redis-sentinel_3.0.4-5_amd64.deb
 e60185d39151dce74e44bf42f173c4bd6651b7847dde7bdda84006fabad933ed 349570 
redis-server_3.0.4-5_amd64.deb
 e584384cfdad4f38a880c152cbe5b11792ded2a971d605fa3a93cc1944875294 98368 
redis-tools_3.0.4-5_amd64.deb
Files:
 254ef1cecd53f2610638352b11a23e65 1961 database optional redis_3.0.4-5.dsc
 388245e24f581bf51e0ccb22f23ff7bd 30072 database optional 
redis_3.0.4-5.debian.tar.xz
 35e5d782f69afd0b3f993a94b7704701 15818 database optional 
redis-sentinel_3.0.4-5_amd64.deb
 b30d5fbf6cd15dc04a1f6000b2403a0d 349570 database optional 
redis-server_3.0.4-5_amd64.deb
 8b8b75f415c0f5ddcc08719da3a7fd19 98368 database optional 
redis-tools_3.0.4-5_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=0hGI
-----END PGP SIGNATURE-----

--- End Message ---