Your message dated Sat, 17 Dec 2016 10:53:53 +0000
with message-id <[email protected]>
and subject line Bug#846843: fixed in ulogd2 2.0.5-5
has caused the Debian Bug report #846843,
regarding Ulogd creates log directory, log files world readable by default
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
846843: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=846843
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: ulogd2
Version: 2.0.4-2+deb8u1
Severity: serious
Tags: security
After a fresh install of ulogd2, logging directory has following
permissions:
# ls -al /var/log/ulog
total 8
drwxr-xr-x 2 root root 4096 Dec 3 16:22 .
drwxr-xr-x 10 root root 4096 Dec 3 16:22 ..
-rw-r--r-- 1 root root 0 Dec 3 16:22 syslogemu.log
Depending on packets logged, users on machine may gain much more
information than available via /proc/[pid] - which would be just
the remote address of TCP connections. This is especially annoying
when ulogd is used to create full packet captures of some connections
as recommended in howtos.
As ulogd is started with UID=0 and drops permissions, I would
recommend changing default permissions for directory to 0700 and
0600 for files. For rare scenarios, where users would really need
to let another software read that data, permissions should be changed
on those machines only.
--- End Message ---
--- Begin Message ---
Source: ulogd2
Source-Version: 2.0.5-5
We believe that the bug you reported is fixed in the latest version of
ulogd2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Chris Boot <[email protected]> (supplier of updated ulogd2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 17 Dec 2016 10:28:55 +0000
Source: ulogd2
Binary: ulogd2 ulogd2-dbi ulogd2-json ulogd2-mysql ulogd2-pcap ulogd2-pgsql
ulogd2-sqlite3
Architecture: source
Version: 2.0.5-5
Distribution: unstable
Urgency: medium
Maintainer: Chris Boot <[email protected]>
Changed-By: Chris Boot <[email protected]>
Description:
ulogd2 - Netfilter Userspace Logging Daemon
ulogd2-dbi - DBI extension to ulogd
ulogd2-json - JSON extension to ulogd
ulogd2-mysql - MySQL extension to ulogd
ulogd2-pcap - pcap extension to ulogd
ulogd2-pgsql - PostgreSQL extension to ulogd
ulogd2-sqlite3 - SQLite 3 extension to ulogd
Closes: 846843
Changes:
ulogd2 (2.0.5-5) unstable; urgency=medium
.
* Switch to debhelper compat 10.
- debian/control: update and tidy up Build-Depends.
- debian/rules: tidy and remove implied autoreconf, systemd and parallel
options
* ulogd2.service: Add Documentation key
* Tighten ownership and permissions on /var/log/ulog. (Closes: #846843)
Checksums-Sha1:
c3ec2ebc9d6d7ae88233403ac7ff05758514b038 2568 ulogd2_2.0.5-5.dsc
0595444838b854b7f866d087f8d72d01dd22ea81 18656 ulogd2_2.0.5-5.debian.tar.xz
Checksums-Sha256:
083d85f2de4f5572bf91d00345ef62c56aac3c424677a82263cc0327506be14a 2568
ulogd2_2.0.5-5.dsc
992dbacc116db46ea7adc4e71ea560b00f26d41d666b67ac6b80a3631dffd128 18656
ulogd2_2.0.5-5.debian.tar.xz
Files:
f5570dacbd43f45fb3df4fb939f8352f 2568 net optional ulogd2_2.0.5-5.dsc
489bd2ee05ef139a3ab3cc42f401b866 18656 net optional
ulogd2_2.0.5-5.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=S1uG
-----END PGP SIGNATURE-----
--- End Message ---
