*** This bug is a security vulnerability ***
Public security bug reported:
I run tinc under a normal user (and not root) by putting the following
in /etc/default/tinc:
EXTRA="--user=tinc"
With systemd this is no longer read even though /etc/default/tinc is
still shipped with the package, making it a bit deceiving for the user.
It would probably also make sense to just ship tinc running under a non-
root user by default. It's not hard to do and it's one less root daemon
exposed to the network.
ProblemType: Bug
DistroRelease: Ubuntu 18.04
Package: tinc 1.0.33-1build1
ProcVersionSignature: Ubuntu 4.15.0-22.24-generic 4.15.17
Uname: Linux 4.15.0-22-generic x86_64
ApportVersion: 2.20.9-0ubuntu7.1
Architecture: amd64
CurrentDesktop: ubuntu:GNOME
Date: Fri Jun 1 20:28:23 2018
InstallationDate: Installed on 2018-05-31 (1 days ago)
InstallationMedia: Ubuntu 18.04 LTS "Bionic Beaver" - Release amd64 (20180426)
SourcePackage: tinc
UpgradeStatus: No upgrade log present (probably fresh install)
mtime.conffile..etc.default.tinc: 2018-06-01T19:31:02.537884
** Affects: tinc (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug bionic
** Information type changed from Public to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1774709
Title:
/etc/default/tinc is no longer used by systemd
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tinc/+bug/1774709/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
