[Bug 214638] New: XEN: Directories /var/lib/xen should not be world-readable
https://bugzilla.novell.com/show_bug.cgi?id=214638 Summary: XEN: Directories /var/lib/xen should not be world- readable Product: SUSE Linux 10.1 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: Ulrich.Windl@rz.uni-regensburg.de QAContact: qa@suse.de Directories /var/lib/xen/* may contain sensitive data like disk images, saved memory images, etc. Per default these are world-readable (rpm -qvl xen-tools). They should not. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214638 lnussel@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|security-team@suse.de |cgriffin@novell.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214638 ccoffing@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|cgriffin@novell.com |ccoffing@novell.com Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=214638 ccoffing@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED ------- Comment #1 from ccoffing@novell.com 2006-10-30 15:37 MST ------- Both /var/lib/xen/images and /var/lib/xen/save now have 0700 permissions. Fixed going into 10.2 beta 2 and SLES 10 SP1. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com