Date: Wed, 7 Oct 2020 21:00:35 +0300 From: Georgi Guninski <gguninski@...il.com> To: "oss-security@...ts.openwall.com" <oss-security@...ts.openwall.com> Cc: cate@...ian.org Subject: Debian FEATURE: /home/loser is with permissions 755, default umask 0022 https://lists.debian.org/debian-security/2020/10/msg00000.html === /home/loser is with permissions 755, default umask 0022 on multiuser machines this sucks much. on a multiuser debian mirror we found a lot of data, including the wordpress password of the admin. === Then in the thread someone with @debian.org email explains to me it is a feature, not a bug. In a addition, they suggest to tell them the mirror, lol. Are debian detached from reality?
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.