[Secure-testing-team] Bug#666390: anacron: change default ANACRON_RUN_ON_BATTERY_POWER to yes
Christoph Anton Mitterer
calestyo at scientia.net
Fri Mar 30 11:24:03 UTC 2012
Package: anacron
Version: 2.3-17
Severity: important
Tags: security
Hi.
The idea of anacron is to more or less "guarantee" that cron jobs are run
on hosts that are not always up.
This can also include security relevant stuff, like running rkhunter,
downloading the latest virus signatures, etc..
While it's nice to be able to control that it does not run on battery, the
secure default should be to run always.
Especially people who rarely (or never) use the system on power may
otherwise run into the situation that their cron jobs are not executed
(often enough).
Further, the default file should contain a hint about what may happen,
when this is changed (i.e. about what I wrote above).
Third, when such a big change is introduced (and from the point of view of
anacron's whole intention this is a big change) it should be noted in the
NEWS file.
Cheers,
Chris.
More information about the Secure-testing-team
mailing list