*** This bug is a security vulnerability ***

You have been subscribed to a public security bug by Seth Arnold (seth-arnold):
CIS hardening benchmarks (6.1.6) suggest that the /etc/passwd- file
should be mode 0600 (or more restrictive).

However, this file is 0644 after it is created when the /etc/passwd file
is modified. (Ie, a hardening script that creates a hardened system for
initial use could change this mode, but it will go out of compliance the
next time a backup file is made.)

** Affects: shadow (Ubuntu)
     Importance: Undecided
         Status: New

-- 
backup /etc/passwd- file should be mode 0600
https://bugs.launchpad.net/bugs/1923262
You received this bug notification because you are a member of Ubuntu Bugs, 
which is subscribed to the bug report.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to