** Changed in: ofono (Ubuntu)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/688286
Title:
[MIR] ofono
To manage notifications about this bug go to:
Ah, thanks for the clarification.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/688286
Title:
[MIR] ofono
To manage notifications about this bug go to:
@Tony, I just was pointing out a lintian warning. What it means is that
ofono-scripts is installing a python script (/usr/share/ofono/scripts
/set-ddr) but does not Depend on python. So if installed on a (very
bare) system, that script wouldn't work.
--
You received this bug notification
@Michael
Didn't quite catch that last bit about ofono-scripts. Care to
elaborate? Is this something we should fix in our next landing?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/688286
Title:
I reviewed this 6 years ago... Yikes.
So a quick scan shows it to still be fine. Security is OK with this.
There are a million bugs, but putting this in main is part of a slow
transition, it should be fine.
One minor note: ofono-scripts: python-script-but-no-python-dep
** Changed in: ofono (Ubuntu)
Importance: Undecided => Critical
** Changed in: ofono (Ubuntu)
Status: Incomplete => In Progress
** Description changed:
- Binary package hint: ofono
+ [Availability]
+ * Available in universe
- I have reviewed the package and it meets the
Hope nobody's upset that I grabbed this one. We should definitely make
this happen for 14.04.
** Changed in: ofono (Ubuntu)
Assignee: Ubuntu Desktop (ubuntu-desktop) = Tony Espy (awe)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to
On Mon, Jan 10, 2011 at 09:53:09PM -, Kalle Valo wrote:
CAP_NET_RAW, CAP_SYS_ADMIN, -1);
Is that enough?
ofono would then need to build depend on libcap-ng-dev, but it's in main
already AFAICS.
CAP_SYS_ADMIN is basically full root still, so that's not
With --enable-capng ofono would drop privileges:
#ifdef HAVE_CAPNG
/* Drop capabilities */
capng_clear(CAPNG_SELECT_BOTH);
capng_updatev(CAPNG_ADD, CAPNG_EFFECTIVE | CAPNG_PERMITTED,
CAP_NET_BIND_SERVICE, CAP_NET_ADMIN,
This daemon should drop privileges or have an AppArmor profile defined
and in use. It listens on system dbus, which gives it a huge attack
surface.
** Changed in: ofono (Ubuntu)
Status: Fix Committed = Incomplete
** Changed in: ofono (Ubuntu)
Assignee: Ubuntu Security Team
Additionally, the daemon starts unconditionally, even if I'm never going
to use a device that it manages. I think it should start only when
needed to avoid the memory footprint.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
could ubuntu-security please have a final look? package starts a daemon
** Changed in: ofono (Ubuntu)
Assignee: (unassigned) = Ubuntu Security Team (ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Approved. Good packaging, builds clean, etc. There are a lot of
sprintf calls, which always makes me nervous, but they seemed to all be
either sensible buffer sizes or guarded (with strlen checks).
One thing I don't get is ofono-dev. There's no library, why the
headers? Seems like the headers
13 matches
Mail list logo
