Subject: .gajim/config is world readable/executable Package: gajim Version: 0.8-1, 0.7.1-1 Severity: grave Tags: security, fixed-upstream
The config file/dir where Jabber passwords are kept is world readable/executable: [EMAIL PROTECTED]:~$ ls -la .gajim/ total 36 drwxr-xr-x 3 yavor yavor 4096 2005-08-25 21:21 . drwxr-x--x 234 yavor yavor 16384 2005-08-26 01:49 .. -rw-r--r-- 1 yavor yavor 11392 2005-08-25 21:21 config drwxr-xr-x 4 yavor yavor 4096 2005-08-25 22:35 logs -- Yavor Doganov JID: [EMAIL PROTECTED] Free Software Association - Bulgaria http://fsa-bg.org GNOME in Bulgarian! http://gnome.cult.bg -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
