[Pkg-openssl-devel] Bug#471958: openssl: Generated private keys world-readable by default

Sebastian Andrzej Siewior sebastian at breakpoint.cc
Sat May 28 19:52:30 UTC 2016


On 2008-04-06 15:04:58 [+0200], Lionel Elie Mamane wrote:
> OK, fair enough. If only Debian patches it, people using Debian will
> write scripts using genrsa that are dangerous on other OSes. I've
> emailed upstream with the suggestion, we'll see what they think of
> it.

Upstream suggested to use safe umask. Are you fine with me closing this bug?

Sebastian



More information about the Pkg-openssl-devel mailing list