Your message dated Sat, 17 Dec 2016 23:36:42 +0000
with message-id <[email protected]>
and subject line Bug#824980: fixed in mon-contrib 1.0+dfsg-3+nmu1
has caused the Debian Bug report #824980,
regarding mon-contrib: scripts use predictable names in /tmp which is a
potential security issue
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
824980: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=824980
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: mon-contrib
Version: 1.0+dfsg-3
Severity: normal
alert.d/sms.alert mon.d/smtp_rt.monitor mon.d/tftp.monitor
The above scripts use predictable names in /tmp which is a potential security
issue.
I suggest replacing /tmp/ with ~mon/ .
-- System Information:
Debian Release: stretch/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.5.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
Versions of packages mon-contrib depends on:
ii mon 1.2.0-9
mon-contrib recommends no packages.
mon-contrib suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: mon-contrib
Source-Version: 1.0+dfsg-3+nmu1
We believe that the bug you reported is fixed in the latest version of
mon-contrib, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Russell Coker <[email protected]> (supplier of updated mon-contrib package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 08 Dec 2016 22:28:15 +1100
Source: mon-contrib
Binary: mon-contrib
Architecture: source amd64
Version: 1.0+dfsg-3+nmu1
Distribution: unstable
Urgency: medium
Maintainer: Dario Minnucci <[email protected]>
Changed-By: Russell Coker <[email protected]>
Description:
mon-contrib - contributed tools, monitors and alert for mon
Closes: 823840 823847 824980
Changes:
mon-contrib (1.0+dfsg-3+nmu1) unstable; urgency=medium
.
* Non-maintainer upload.
* Remove ps.monitor and remote.monitor as they are moved to the mon package.
* Fix the path for the softraid stats file Closes: #823840
* Ignore softraid bitmap status to avoid false alerts Closes: #823847
* Make scripts not use /tmp in a possibly insecure way. Closes: #824980
Checksums-Sha1:
8a5982b3158d50779c1090d9d8e32108a38cf2e0 1949 mon-contrib_1.0+dfsg-3+nmu1.dsc
d5bb83c71f9df6a80ed5f6b41c8060ceb403c7d2 18468
mon-contrib_1.0+dfsg-3+nmu1.debian.tar.xz
b913f8c8fb96601e497e0450fd8637a67d21fb17 4590
mon-contrib_1.0+dfsg-3+nmu1_amd64.buildinfo
78d9d326962757ec1f47fe1906573adabc76cfe6 75686
mon-contrib_1.0+dfsg-3+nmu1_amd64.deb
Checksums-Sha256:
49d5c81f17133dddf7b57aa782dec50d967f5a2094a28e3276ce57f775877b0d 1949
mon-contrib_1.0+dfsg-3+nmu1.dsc
e4acc7778212e548bbd2d59845e5d3ba6dc5177a0302f4e0794137483d637dd3 18468
mon-contrib_1.0+dfsg-3+nmu1.debian.tar.xz
adb4921dddc7ba5b38dc20a35a5786bc19233d5fa467a663314c6616112c743e 4590
mon-contrib_1.0+dfsg-3+nmu1_amd64.buildinfo
27825a87478d2dee71028849a16dc7ee1ee1b12750ccc6edb4b6d77a1f4b18b5 75686
mon-contrib_1.0+dfsg-3+nmu1_amd64.deb
Files:
bf314388b45ee3da2966d0dd36c45c06 1949 admin extra
mon-contrib_1.0+dfsg-3+nmu1.dsc
da3282b3fc02b6942a99527cc9b4ec74 18468 admin extra
mon-contrib_1.0+dfsg-3+nmu1.debian.tar.xz
cb8e93183dd9fb7fc02a82d734d5cf66 4590 admin extra
mon-contrib_1.0+dfsg-3+nmu1_amd64.buildinfo
7a5d54194fce49eadda365a944f9e9bc 75686 admin extra
mon-contrib_1.0+dfsg-3+nmu1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=UG2h
-----END PGP SIGNATURE-----
--- End Message ---
