Package: bip Version: 0.5.3-3 Severity: important Tags: security The /etc/bip.conf file can hold plain text IRC passwords needed to log onto a server, but the default permissions make the file world readable.
Instead, the file should be owned by group bip and not be world readable: -rw-r----- 1 root bip 4149 2007-03-22 15:21 bip.conf Maybe the file should even be owned by user bip. Cheers, FJP
pgpTvRAB3sj5U.pgp
Description: PGP signature
