Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#67247 - [nut] use correct permissions on conf files
Attached to Project:
Community Packages
Opened by Konstantin Gizdov (kgizdov) - Friday, 10 July 2020, 11:38 GMT
Last edited by Maxime Gauduin (Alucryd) - Tuesday, 21 July 2020, 11:39 GMT
Opened by Konstantin Gizdov (kgizdov) - Friday, 10 July 2020, 11:38 GMT
Last edited by Maxime Gauduin (Alucryd) - Tuesday, 21 July 2020, 11:39 GMT
|
DetailsDescription:
the files /etc/nut/{upsd.conf,upsd.users,upsmon.conf} should all be not world readable according to documentation as they each contain secret information about permissions, authentication, etc. However, only upsd.user is currently handled correctly. It would be best if root:nut ownership with 0640 permissions was enforced on system level. Additional info: * package version(s): 2.7.4-1 * config and/or log files etc.: * link to upstream bug report, if any Steps to reproduce: 1. ls -lah /etc/nut 2. see files being world readable |
This task depends upon
Closed by Maxime Gauduin (Alucryd)
Tuesday, 21 July 2020, 11:39 GMT
Reason for closing: Fixed
Additional comments about closing: 2.7.4-2
Tuesday, 21 July 2020, 11:39 GMT
Reason for closing: Fixed
Additional comments about closing: 2.7.4-2