On Sun, Oct 09, 2005 at 12:11:30AM +0200, Paolo wrote: > Package: masqmail > Version: 0.2.20-1sarge1 > Severity: critical
> seems to me that the default config of online_file is pretty insecure: > /tmp/connect_route > given the way it's created by the ip-up script: > [ ROUTEFILE=/tmp/connect_route ] > ... > if [ -n "$SCHEME" ] ; then > echo -n "$SCHEME" > "$ROUTEFILE" > chmod 0644 "$ROUTEFILE" > fi > ... > I think adding > rm -f "$ROUTEFILE" > before 'echo ...' would be enough. No, it wouldn't. That would just replace a symlink attack with a race condition+symlink attack. But I don't see any of this code in the /etc/ppp/ip-up.d/1masqmail script in this version of the package, so I don't know what you're talking about? -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/
signature.asc
Description: Digital signature
