2009/12/14 Michael Meskes :
> On Sun, Dec 13, 2009 at 09:42:58PM -0600, Raphael Geissert wrote:
>> I think the best approach is to prepare uploads for unstable and
>> stable (via stable-proposed-updates) fixing the permissions of the
>
> Why only proposed-updates and not security?
>
>> file, and an
On Sun, Dec 13, 2009 at 09:42:58PM -0600, Raphael Geissert wrote:
> I think the best approach is to prepare uploads for unstable and
> stable (via stable-proposed-updates) fixing the permissions of the
Why only proposed-updates and not security?
> file, and an upload for oldstable (via oldstable-
Hi,
2009/12/12 Ted Felix :
> Looks like the problem is in this line from open_logs():
>
> logfd = open(logfile, O_WRONLY|O_CREAT|O_APPEND);
>
> It should be this:
>
> logfd = open(logfile, O_WRONLY|O_CREAT|O_APPEND, 0640);
>
> And (theoretically, as I've not tested it) the problem is solved.
Y
Looks like the problem is in this line from open_logs():
logfd = open(logfile, O_WRONLY|O_CREAT|O_APPEND);
It should be this:
logfd = open(logfile, O_WRONLY|O_CREAT|O_APPEND, 0640);
And (theoretically, as I've not tested it) the problem is solved.
As mentioned, this doesn't fix any existi
2009/12/12 Michael Meskes :
> On Fri, Dec 11, 2009 at 09:23:58PM -0600, Raphael Geissert wrote:
>> the following CVE (Common Vulnerabilities & Exposures) id was
>> published for acpid.
>>
>> CVE-2009-4235[0]:
>> | acpid 1.0.4 sets an unrestrictive umask, which might allow local users
>> | to levera
On Fri, Dec 11, 2009 at 09:23:58PM -0600, Raphael Geissert wrote:
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for acpid.
>
> CVE-2009-4235[0]:
> | acpid 1.0.4 sets an unrestrictive umask, which might allow local users
> | to leverage weak permissions on /var/log/acp
6 matches
Mail list logo