Public bug reported:
Binary package hint: checkgmail
Checkgmail stores its configuration in the ~/.checkgmail directory. Since one
has the option of saving the Gmail password, it would be a good idea to make
this directory accessible only by its owner. The default permissions of the
.checkgmail directory make the files within it world readable, allowing any
user on the system to read another user's ~/.checkgmail/prefs.xml, which may
contain the password stored in plain-text.
The directory should therefore be created with saner permissions like 0700.
** Affects: checkgmail (Ubuntu)
Importance: Undecided
Status: New
--
Unsafe permissions on configuration directory
https://bugs.launchpad.net/bugs/164187
You received this bug notification because you are a member of Ubuntu
Bugs, which is the bug contact for Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
