[Bug 872000] [NEW] /etc/apache2/mods-available/suexec.load has group read
Jamie Strandboge
jamie at ubuntu.com
Mon Oct 10 20:51:55 UTC 2011
Public bug reported:
$ ls -l /etc/apache2/mods-available/suexec.load
-rw-rw-r-- 1 root root 64 2011-09-06 13:38 /etc/apache2/mods-available/suexec.load
While this is not security-relevant, it is also not desirable. What happened is that the default umask changed fro 0002 to 0022 in 11.10 (https://blueprints.launchpad.net/ubuntu/+spec/umask-to-0002). While debian/rules does use dh_fixperms, it is using 'dh_fixperms -Xsuexec' which excludes /etc/apache2/mods-available/suexec.load. The package should use:
dh_fixperms -Xsuexec
chmod go-wx debian/apache2.2-common/etc/apache2/mods-available/suexec.load
** Affects: apache2 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/872000
Title:
/etc/apache2/mods-available/suexec.load has group read
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/872000/+subscriptions
More information about the Ubuntu-server-bugs
mailing list