« back to all changes in this revision
Viewing changes to debian/prewikka.postinst
- Committer: Bazaar Package Importer
- Date: 2010-06-10 15:50:02 UTC
- mfrom: (8.1.7 sid)
- Revision ID: james.westby@ubuntu.com-20100610155002-61mcf03fhfpm79l9
* Non-maintainer upload by the Security Team.
* Install prewikka.conf file with mode 0640 to prevent disclosure
of db credentials (CVE-2010-2058; Closes: #584469).
NOTE to maintainer: I've seen there is a chmod 640 at the end
of the postinst script but this is on the one hand prone to a
race condition and on the other hand not always effective.
* Install prewikka.conf file with mode 0640 to prevent disclosure
of db credentials (CVE-2010-2058; Closes: #584469).
NOTE to maintainer: I've seen there is a chmod 640 at the end
of the postinst script but this is on the one hand prone to a
race condition and on the other hand not always effective.
- files modified:
- debian/changelog
added
removed
debian/prewikka.postinst
