Public bug reported:
please, dont ignore this, but one thing should be fixed in ubuntu, and
it can cause security risk. you know, i was testing security level with
some unimportant file that i called pass.txt and other one pass.php, but
they booth gave the same test result. then i changed permission to these
2 files to chmod 700 /.../.../pass.php. but the next test was performed
outside of terminal, and realy, nobody can not access it, neither me
too. but with have big hoole with terminal. if i am loged as a root in
terminal, than i can access these files, as permission is given and all
is fine. then i tryed as normal user, but, it can not be accessed
without sudo command. and that is problem, beacause they are asked to
enter password for they normal user account, not for the root. once when
you enter your normal user password, you are egible to see files, to
edit them, or even delete, so that practiculary means, anybody who has
an account on that computer, or even server, can access that file. not
good practice beleive me. hope this my report can help linux developers,
if nothing else, just to think about it for future fix, beacause, linux
is future, for some years, 10 years, 20 or even 30 years, i see
microsoft and anyone off, and linux on top, so please correct that
little bugs thats all. thanks for understanding and please, DONT IGNORE
THIS!!!!!
** Affects: virtualbox (Ubuntu)
Importance: Undecided
Status: New
** Information type changed from Private Security to Public
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1155956
Title:
security level is not so high in ubuntu need improvements
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/virtualbox/+bug/1155956/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
