[Secure-testing-team] Bug#722335: sudo init script should set date to epoch, not 1985-01-01
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Sep 10 11:30:48 UTC 2013
Package: sudo
Version: 1.8.6p3-0ubuntu3
Severity: normal
Tags: security
Sudo treats filestamps set to epoch as invalid, so the init script should set the contents of /var/lib/sudo to epoch, and not 19850101.
ie:
find /var/lib/sudo -exec touch -d @0 '{}' \;
instead of:
find /var/lib/sudo -exec touch -t 198501010000 '{}' \;
See downstream bug report:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1223297
More information about the Secure-testing-team
mailing list