oss-sec mailing list archives
Possibly insecure permissions on sshd_config in Debian-based distros
From: Andrey Korolyov <andrey () xdel ru>
Date: Thu, 22 Aug 2013 22:10:57 +0400
Hello, At least both Precise and Wheezy has 0644 mask on this file so an unprivileged local user can obtain some sensitive information from it. Though it not CVE-worthy, but quite strange.
Current thread:
- Possibly insecure permissions on sshd_config in Debian-based distros Andrey Korolyov (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Kurt Seifried (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Andrey Korolyov (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Daniel Kahn Gillmor (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Kurt Seifried (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Andrey Korolyov (Aug 22)
- Re: Possibly insecure permissions on sshd_config in Debian-based distros Kurt Seifried (Aug 22)