This was fixed in 3.0.16+dfsg-3, which we have in cosmic as 3.0.16+dfsg-
3ubuntu1.
** Changed in: freeradius (Ubuntu)
Status: Triaged => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to the bug report.
We should get the change in the next sync with debian
--
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1752156
Title:
File permissions allow access to sensitive information by "others"
To
Debian has made the change:
freeradius (3.0.16+dfsg-3) unstable; urgency=medium
.
* Change default /etc/freeradius permission from 2751 to 2750 (Closes:
#890933)
** Tags added: server-next
** Changed in: freeradius (Ubuntu)
Status: New => Triaged
** Changed in: freeradius (Ubuntu)
In bionic we have:
ubuntu@bionic:~$ l /etc/freeradius/
ls: cannot open directory '/etc/freeradius/': Permission denied
ubuntu@bionic:~$ cat /etc/freeradius/3.0/users
cat: /etc/freeradius/3.0/users: Permission denied
ubuntu@bionic:~$ sudo ls -lah /etc/freeradius/3.0/users
lrwxrwxrwx 1 freerad
"In any case, the packaging used mode 2751 for /etc/freeradius before I
became the maintainer, so I never questioned it.
Especially seeing that upstream is in agreement, I’m all for using a
stricter permission. I’ll change the package to use 2750 going forward."
Looks like debian will change the