Bug#358651: Default menu.lst is world-readable (maybe a security
problem)
Alejandro Exojo
suy at badopi.org
Mon Jan 29 12:53:14 UTC 2007
Hi.
As reported, the default permissions of menu.lst, allow any user to see the
contents of the file. Since it's possible to store passwords there, I hope
you can consider changing its default permissions.
I don't know if this problem it's relevant enough to rise the attention of the
security team, because I don't know if it really is a security problem, or
just a wish, but it would be great if at least you, as maintainers, give your
opinion respect this issue (fixing, or tagging as wontfix). This way, it
doesn't seems that nobody cares about the bug report. :-)
Thank you.
--
Alex (a.k.a. suy) - GPG ID 0x0B8B0BC2
http://barnacity.net/ - Jabber ID: suy at bulmalug.net
More information about the Pkg-grub-devel
mailing list