On Mon, Aug 27, 2012 at 10:38:22 +0200, Gaudenz Steinlin wrote: > > Hi > > chuck adams <chuck.adams.k...@gmail.com> writes: > > > Using the suggested comment that /etc/network/interfaces needed lines > > commented out, I went to a working system and compared the interfaces > > file. > > > > In the installation using the wireless interface the interfaces > > file contained a serious security violation as shown here: > > > > # The primary network interface > > allow-hotplug wlan0 > > iface wlan0 inet dhcp > > wpa-ssid NETGEAR > > wpa-psk wittyflower875 > > > > > > In that the file contains, in plain ASCII text, > > the ssid and password for the network and the file > > is viewable by all users. > > Does anyone know if it's really necessary that /etc/network/interfaces > is world readable? Or could this file set to mode 0600 by d-i if it > contains any sensitive information? > 0600 works fine, last I checked.
Cheers, Julien
signature.asc
Description: Digital signature
