Your message dated Sun, 30 Aug 2009 02:04:03 -0400
with message-id <[email protected]>
has caused the report #544232,
regarding fail2ban: Insecure creating/writing to tmpfile
to be marked as having been forwarded to the upstream software
author(s) Cyril Jaquier <[email protected]>
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
544232: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=544232
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
On Sun, 30 Aug 2009, Tomasz Papszun wrote:
> everybody, an attacker can create a symlink leading to any file, also to
> files writable only for root. Then fail2ban (which runs as root) will
ah, right -- I was silly... forwarding upstream for now
Cyril, could you please have a look at http://bugs.debian.org/544232
quite a few actions are prone to such a problem
$> git grep -l tmpfile
action.d/dshield.conf
action.d/mail-buffered.conf
action.d/mynetwatchman.conf
action.d/sendmail-buffered.conf
none of these actions is enabled by default in any jail afaik but still
-- it would be better to work it out in a sane fashion
--
.-.
=------------------------------ /v\ ----------------------------=
Keep in touch // \\ (yoh@|www.)onerussian.com
Yaroslav Halchenko /( )\ ICQ#: 60653192
Linux User ^^-^^ [175555]
signature.asc
Description: Digital signature
--- End Message ---
