samba-bugs at samba.org
2010-Jun-11 14:31 UTC
DO NOT REPLY [Bug 7510] New: rsyncd.conf: Default path=/ is dangerous
https://bugzilla.samba.org/show_bug.cgi?id=7510 Summary: rsyncd.conf: Default path=/ is dangerous Product: rsync Version: 3.0.7 Platform: Other OS/Version: Other Status: NEW Severity: normal Priority: P3 Component: core AssignedTo: wayned at samba.org ReportedBy: pepper at reppep.com QAContact: rsync-qa at samba.org One of our users accidentally commented out the path entry for a module on our backup server. As a result, the backup started overwriting system files and wrecked the backup server. I realize that path=/ is an excellent default for pulling backups from other machines, but would like to suggest that path must be explicitly set (for all modules or individual modules) in order to write to rsyncd. -- Configure bugmail: https://bugzilla.samba.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.
samba-bugs at samba.org
2010-Jun-11 16:46 UTC
DO NOT REPLY [Bug 7510] rsyncd.conf: Default path=/ is dangerous
https://bugzilla.samba.org/show_bug.cgi?id=7510 wayned at samba.org changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED Version|3.0.7 |3.1.0 ------- Comment #1 from wayned at samba.org 2010-06-11 11:46 CST ------- This is already fixed in the 3.1.0dev code in git -- rsync refuses to use any module that doesn't have a path set. -- Configure bugmail: https://bugzilla.samba.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.
Reasonably Related Threads
- DO NOT REPLY [Bug 4757] New: Daemon mis-logs paths if module path in rsyncd.conf is relative
- DO NOT REPLY [Bug 5411] New: rsyncd.conf allow does not like CNAME
- DO NOT REPLY [Bug 5381] New: make test fails without /etc/rsyncd.conf
- [Bug 8136] New: space in module path (rsyncd.conf)
- DO NOT REPLY [Bug 7672] New: Ability to include (source) other files into the rsncd.conf configuration.