Bugs item #1078493, was opened at 2004-12-03 12:05 Message generated for change (Comment added) made by brechin You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=109368&aid=1078493&group_id=9368
Category: Installation Group: 4.0 Status: Open >Resolution: Fixed Priority: 9 Submitted By: Bernard Li (bernardli) >Assigned to: Thomas Naughton (naughtont) Summary: Security issue with sync_files and shadow Initial Comment: >From BLANC Mathieu [EMAIL PROTECTED] The sync_files doesn't manage correctly the permissions of the shadow file propagated to the cluster nodes. It is actually readable by all users on the client nodes. I think the permissions should be set to 600 before propagating it. ---------------------------------------------------------------------- >Comment By: Jason Brechin (brechin) Date: 2004-12-03 14:24 Message: Logged In: YES user_id=274641 New RPM handed off to Tom for checkin (and to close the bug) ---------------------------------------------------------------------- Comment By: Thomas Naughton (naughtont) Date: 2004-12-03 13:28 Message: Logged In: YES user_id=288102 Jason, if you can checkin the new RPMS/SRPMS to SVN's head or give them to someone else to checkin, we can add them to trunk/ and the branch-4-0/. oscar on! --tjn ---------------------------------------------------------------------- Comment By: Thomas Naughton (naughtont) Date: 2004-12-03 13:27 Message: Logged In: YES user_id=288102 >From IRC session today: Looks like the problem is in sync_file. It creates tmp files to accomodate the getent(1) routine and gets default permissions, that get propogated out to the nodes. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=109368&aid=1078493&group_id=9368 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ Oscar-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/oscar-devel
