thr3ads.net - Secure testing team - [Secure-testing-team] Bug#637485: password in world-readable file (/etc/apache2/apache2.conf) [Aug 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Ansgar Burchardt

2011-Aug-11 23:31 UTC

[Secure-testing-team] Bug#637485: password in world-readable file (/etc/apache2/apache2.conf)

Package: src:dtc
Version: 0.32.10-2
Severity: serious
Tags: security upstream

Hi,

the setup script for dtc wrote a password for the MySQL user
"dtcdaemons" into the world readable file /etc/apache2/apache2.conf.

Ansgar

Secure testing team - Aug 2011 - Bug#637485: password in world-readable file (/etc/apache2/apache2.conf)

[Secure-testing-team] Bug#637485: password in world-readable file (/etc/apache2/apache2.conf)