[Secure-testing-team] Bug#637485: password in world-readable file (/etc/apache2/apache2.conf)

Ansgar Burchardt ansgar at debian.org
Thu Aug 11 23:31:55 UTC 2011

Previous message: [Secure-testing-team] Poland on its Way to Greece
Next message: [Secure-testing-team] secure-testing-team-宝-华1V1客-服7:42:48
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Package: src:dtc
Version: 0.32.10-2
Severity: serious
Tags: security upstream

Hi,

the setup script for dtc wrote a password for the MySQL user
"dtcdaemons" into the world readable file /etc/apache2/apache2.conf.

Ansgar

Previous message: [Secure-testing-team] Poland on its Way to Greece
Next message: [Secure-testing-team] secure-testing-team-宝-华1V1客-服7:42:48
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Secure-testing-team mailing list