[Pkg-freeradius-maintainers] Bug#955206: freeradius: Daemon has write privilege to configuration
Bernhard Schmidt
berni at birkenwald.de
Fri Apr 3 14:35:11 BST 2020
Am 03.04.20 um 15:10 schrieb wferi at niif.hu:
Hi,
> "Debian Bug Tracking System" <owner at bugs.debian.org> writes:
>
>> - set ReadOnlyDirectories to the configuration (Closes: #955206)
>
> Well, not very transparent or general, but certainly address my main
> concern. However, the file ownerships still send the wrong message to
> me. Could you please explain why the configuration files are owned by
> the freerad user?
To be honest I have no idea, this was way before my time.
I think it was introduced here in 3.0.12+dfsg-2, shortly before Stretch
https://salsa.debian.org/debian/freeradius/-/commit/42abc545ac8cdf376582ef81701f8db1ab0c3511#bee60e2d25c9ef61ebd4c5d27fecf8ab0a79dd6b
I'm open to changing that, but I currently lack the time to properly
test a migration path. If you have a tested patch, feel free to reopen
and attach it.
Bernhard
More information about the Pkg-freeradius-maintainers
mailing list