[Bug 409777] Re: credentials zip file should pack files with permissions 600
This issue is now being tracked upstream at http://eucalyptus.atlassian.net/browse/EUCA-2657 Please watch that issue for further updates. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in Ubuntu. https://bugs.launchpad.net/bugs/409777 Title: credentials zip file should pack files with permissions 600 To manage notifications about this bug go to: https://bugs.launchpad.net/eucalyptus/+bug/409777/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 409777] Re: credentials zip file should pack files with permissions 600
Mark won't-fix, as upstream says this isn't practical to solve, sadly. ** Changed in: eucalyptus (Ubuntu) Status: Triaged => Won't Fix -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 409777] Re: credentials zip file should pack files with permissions 600
Sadly, the change is not trivial since it would require implementing support for permissions in java.util.zip.* Shelling out is not an option since the contents of the zip never actually exist as files. On Fri, Jan 29, 2010 at 10:54 AM, Dustin Kirkland wrote: > Chris, can you bang this trivial change into 1.6.2? > > -- > credentials zip file should pack files with permissions 600 > https://bugs.launchpad.net/bugs/409777 > You received this bug notification because you are a bug assignee. > > Status in Eucalyptus: Confirmed > Status in “eucalyptus” package in Ubuntu: Triaged > > Bug description: > You can download credentials from the web site in a packed zipfile. > > When this file is unzipped, some relatively sensitive information is > unpacked, including keys and credentials. > > When creating the zipfile, these files should be permissioned appropriately, > such as 600. > > :-Dustin > > > -- Chris Grzegorczyk Co-Founder and Engineer Eucalyptus Systems, Inc. 130 Castilian St. | Goleta, CA | 93117 Office: 805-968-1400 x e^1 | Cell: 805-807-8237 Email: g...@eucalyptus.com www.eucalyptus.com -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 409777] Re: credentials zip file should pack files with permissions 600
Chris, can you bang this trivial change into 1.6.2? -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 409777] Re: credentials zip file should pack files with permissions 600
** Changed in: eucalyptus (Ubuntu) Status: Confirmed => Triaged -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 409777] Re: credentials zip file should pack files with permissions 600
** Changed in: eucalyptus Assignee: (unassigned) => chris grzegorczyk (chris-grze) ** Changed in: eucalyptus Importance: Undecided => Wishlist ** Changed in: eucalyptus Status: New => Confirmed -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 409777] Re: credentials zip file should pack files with permissions 600
Looks like it to me: irkl...@x200:/tmp$ mkdir foo kirkl...@x200:/tmp$ cd foo/ kirkl...@x200:/tmp/foo$ touch a b c kirkl...@x200:/tmp/foo$ chmod 740 a kirkl...@x200:/tmp/foo$ chmod 700 b kirkl...@x200:/tmp/foo$ chmod 444 c kirkl...@x200:/tmp/foo$ zip foo.zip * adding: a (stored 0%) adding: b (stored 0%) adding: c (stored 0%) kirkl...@x200:/tmp/foo$ cd .. kirkl...@x200:/tmp$ mkdir foo2 kirkl...@x200:/tmp$ cd foo2/ kirkl...@x200:/tmp/foo2$ unzip ../foo/*zip Archive: ../foo/foo.zip extracting: a extracting: b extracting: c kirkl...@x200:/tmp/foo2$ ls -alF total 0 drwxr-xr-x 2 kirkland kirkland 100 2009-09-26 03:08 ./ drwxrwxrwt 28 root root 920 2009-09-26 03:08 ../ -rwxr- 1 kirkland kirkland 0 2009-09-26 03:08 a* -rwx-- 1 kirkland kirkland 0 2009-09-26 03:08 b* -r--r--r-- 1 kirkland kirkland 0 2009-09-26 03:08 c -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 409777] Re: credentials zip file should pack files with permissions 600
Does the zip format support UNIX permissions? -- credentials zip file should pack files with permissions 600 https://bugs.launchpad.net/bugs/409777 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to eucalyptus in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs