Bug#868730: rkhunter: /var/lib/rkhunter/tmp shouldn't be world-readable
Christoph Anton Mitterer
calestyo at scientia.net
Tue Jul 18 01:34:45 UTC 2017
I think this was even the case previously:
/var/lib/rkhunter/tmp should be only readable/listable by root:root.
rkhunter makes temp copies of security relevant files there, and while
right now the copies it makes have safe permissions, leaving this dir
world-readable for no good reason just calls for an error that can be
exploited in some way.
More information about the forensics-devel