diff options
| author |   Seemant Kulleen <seemant@gentoo.org> | 2006-09-08 10:55:41 +0000 |
|---|---|---|
| committer | Seemant Kulleen <seemant@gentoo.org> | 2006-09-08 10:55:41 +0000 |
| commit | 232227a106444e12306a25414e27513c6746684c (patch) | |
| tree | cca59ef8043ad93a2c6ecbb9090f748e528553ea /net-dns/ddclient | |
| parent | Removed old versions. (diff) | |
| download | gentoo-2-232227a106444e12306a25414e27513c6746684c.tar.gz gentoo-2-232227a106444e12306a25414e27513c6746684c.tar.bz2 gentoo-2-232227a106444e12306a25414e27513c6746684c.zip | |
fogot to add the reasonable security patch from bug #117124 yesterday. This now closes bug #146799 by Dirk
(Portage version: 2.1.1_rc1-r7)
Diffstat (limited to 'net-dns/ddclient')
| -rw-r--r-- | net-dns/ddclient/ChangeLog | 7 | ||||
| -rw-r--r-- | net-dns/ddclient/files/ddclient-reasonable-security.patch | 21 |
2 files changed, 27 insertions, 1 deletions
diff --git a/net-dns/ddclient/ChangeLog b/net-dns/ddclient/ChangeLog index b32baea56743..9f801e4ef54d 100644 --- a/net-dns/ddclient/ChangeLog +++ b/net-dns/ddclient/ChangeLog @@ -1,6 +1,11 @@ # ChangeLog for net-dns/ddclient # Copyright 2002-2006 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-dns/ddclient/ChangeLog,v 1.22 2006/09/08 00:22:30 seemant Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-dns/ddclient/ChangeLog,v 1.23 2006/09/08 10:55:41 seemant Exp $ + + 08 Sep 2006; Seemant Kulleen <seemant@gentoo.org> + +files/ddclient-reasonable-security.patch: + fogot to add the reasonable security patch from bug #117124 yesterday. This + now closes bug #146799 by Dirk *ddclient-3.7.0 (08 Sep 2006) diff --git a/net-dns/ddclient/files/ddclient-reasonable-security.patch b/net-dns/ddclient/files/ddclient-reasonable-security.patch new file mode 100644 index 000000000000..9dc7930b98a2 --- /dev/null +++ b/net-dns/ddclient/files/ddclient-reasonable-security.patch @@ -0,0 +1,21 @@ +--- ddclient 2006-04-11 10:14:16.000000000 +0100 ++++ ddclient 2006-04-11 20:31:14.000000000 +0100 +@@ -776,15 +776,10 @@ + # fatal("Cannot open file '%s'. ($!)", $file); + warning("Cannot open file '%s'. ($!)", $file); + } +- # Check for only owner has any access to config file ++ # Guard against world-readability of config file + my ($dev, $ino, $mode, @statrest) = stat(FD); +- if ($mode & 077) { +- if (-f FD && (chmod 0600, $file)) { +- warning("file $file must be accessible only by its owner (fixed)."); +- } else { +- # fatal("file $file must be accessible only by its owner."); +- warning("file $file must be accessible only by its owner."); +- } ++ if ($mode & 007) { ++ fatal("Must not be world-accessible\nchange its permissions using e.g.\nchmod 640", $file); + } + + local $lineno = 0; |