FS#53016 - [bftpd] Executable installed with wrong permissions
Attached to Project:
Arch Linux
Opened by Wilhelm Schuster (wlhlm) - Saturday, 18 February 2017, 22:48 GMT
Last edited by Doug Newgard (Scimmia) - Tuesday, 21 February 2017, 15:47 GMT
Opened by Wilhelm Schuster (wlhlm) - Saturday, 18 February 2017, 22:48 GMT
Last edited by Doug Newgard (Scimmia) - Tuesday, 21 February 2017, 15:47 GMT
|
Details
Description:
The executable file for the bftpd package is installed with the wrong permissions: 700 instead of 755. Here is an excerpt from the .MTREE file (from x86_64 package): ./usr/bin/bftpd time=1414707741.215461889 mode=700 size=73352 md5digest=6f3b7690f7c17d9020c382c5dadf6324 sha256digest=d860f1c6ed3a6fe199b9bafcd46106f6a2de663a5427bfa438a8ba1376185a2c Additional info: bftpd 4.4-1 |
This task depends upon
BTW, /etc/bftpd.conf is installed 600, which is odd as well as the generally configuration files have 644 and the bftpd config file does not include any sensitive information that should be hidden from non-root users.
I also don't really have anyone to assign this to.