[Bug 1700611] Re: sources.list file created for ESM is world-readable, leaks subscriber token to all local users

Andreas Hasenack andreas at canonical.com
Thu Jun 29 14:22:04 UTC 2017


Making the file 0600 makes apt-cache complain about it when run by non-
root users. Is that an issue worth having?

<ack> $ apt policy asdf
<ack> E: Opening /etc/apt/sources.list.d/dropbox.list - ifstream::ifstream (13: Permission denied)
<ack> E: The list of sources could not be read.

(dropbox.list was just an example)

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to ubuntu-advantage-tools in Ubuntu.
https://bugs.launchpad.net/bugs/1700611

Title:
  sources.list file created for ESM is world-readable, leaks subscriber
  token to all local users

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ubuntu-advantage-tools/+bug/1700611/+subscriptions



More information about the Ubuntu-server-bugs mailing list