severity 482085 normal tags 482085 -security thanks This one time, at band camp, Harhalakis Stefanos said: > Justification: user security hole
That's perhaps an exageration. > By default freeradius leaves /var/log/freeradius with permissions 755. > Enabling sqltrace will result in a world-readable sqltrace in this, > possibly containing cleartext passwords. Enabling sqltrace? What is sqltrace? It's certainly not part of the clamav suite. It also doesn't appear to be a package in Debian. Under normal use, none of the logfiles contain anything sensitive. Maybe you can explain how, under your particular setup, the logs came to contain something sensitive and why this configuration should be a supported configuration? Thanks, -- ----------------------------------------------------------------- | ,''`. Stephen Gran | | : :' : [EMAIL PROTECTED] | | `. `' Debian user, admin, and developer | | `- http://www.debian.org | -----------------------------------------------------------------
signature.asc
Description: Digital signature
