Your message dated Fri, 28 Oct 2022 20:47:54 +0000 with message-id <e1oowgg-0097ob...@fasolo.debian.org> and subject line Bug#995012: fixed in msmtp 1.8.22-1 has caused the Debian Bug report #995012, regarding msmtp being setgid breaks its libsecret support on some bookworm systems to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 995012: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=995012 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: msmtp Version: 1.8.11-2 Severity: important Tags: bookworm sid Under at least some configurations, msmtp being setgid will now prevent it from talking to the D-Bus session bus via libsecret, and therefore prevent it from being able to retrieve passwords from gnome-keyring or (probably) KWallet. This is a result of security hardening in GLib aimed at preventing setuid/setgid/setcap/otherwise privileged processes from being subverted by crafted environment variables. As mentioned in <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944188#21>, a previous attempt to apply this security hardening caused msmtp (and gnome-keyring) to regress, particularly for users of dbus-launch (which in particular includes all users of non-systemd init systems). Users of dbus-user-session (which requires systemd) are currently believed to be unaffected, although we have had one report of a regression even for a user of dbus-user-session (#994961) for which I'm waiting for more info. It is possible that future GLib security hardening will additionally prevent privileged processes from trusting the XDG_RUNTIME_DIR from the environment, which would mean that a setgid msmtp cannot connect to D-Bus at all, even on systems that use dbus-user-session. An upstream GLib maintainer followed up in <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944188#26> to set a deadline for reapplying the hardening in GLib 2.70. This deadline has now been reached and GLib 2.70 is in unstable, which means msmtp needs to choose one of these options: 1. Don't be setgid, and do support libsecret. This would also avoid trying to give security guarantees that msmtp upstream does not, and giving sysadmins a false sense of security regarding the extent to which passwords in /etc/msmtprc are protected (closing #944188). However, it would be a feature regression, losing the ability to get a system-wide password from a non-world-readable /etc/msmtprc. 2. Don't support libsecret, and do support setgid msmtp. This would also be a feature regression, losing the ability to get per-user passwords from gnome-keyring or KWallet. 3. Support both, but only one at a time, and document sysadmin configuration (perhaps via dpkg-statoverride, a debconf question, or two conflicting binary packages) to switch between modes. This would avoid any feature regression, but is higher-complexity than the other options. I would personally go for option 1, because as I said in #944188, the other two are not supported by msmtp upstream and I think they only give a false sense of security; but it's the maintainer's decision. I do not intend to revert the security hardening in GLib for a second time unless GLib upstream do so, which they have indicated they will not. smcv
--- End Message ---
--- Begin Message ---Source: msmtp Source-Version: 1.8.22-1 Done: Emmanuel Bouthenot <kol...@debian.org> We believe that the bug you reported is fixed in the latest version of msmtp, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 995...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Emmanuel Bouthenot <kol...@debian.org> (supplier of updated msmtp package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 28 Oct 2022 19:57:41 +0000 Source: msmtp Architecture: source Version: 1.8.22-1 Distribution: unstable Urgency: medium Maintainer: Emmanuel Bouthenot <kol...@debian.org> Changed-By: Emmanuel Bouthenot <kol...@debian.org> Closes: 944188 945024 995012 996789 999789 1000761 1017455 1020758 Changes: msmtp (1.8.22-1) unstable; urgency=medium . * New upstream release (Closes: #1020758) - Add support for generating RFC-2822 Message-ID header (Closes: #945024) * Remove SetGID bit on msmtp for security reasons. See debian/NEWS for further information (Closes: #995012, #944188) * Bump Standards-Version to 4.6.1.0 * Refresh lintian overrides for msmtp-mta * Update German debconf template translation, thanks to Helge Kreutzmann (Closes: #999789) * Update Dutch debconf template translation, thanks to Frans Spiesschaert (Closes: #996789) * Update Portuguese debconf template translation, thanks to Américo Monteiro (Closes: #1000761) * Update Spanish debconf template translation, thanks to Camaleón (Closes: #1017455) * Scripts (msmtpq and msmtpqueue) are now installed in /usr/libexec/msmtp instead of /usr/share/doc/msmtp/examples previously. Checksums-Sha1: b4aad8ffd63c3d57e309d3032b43a0ce52f4ae22 2200 msmtp_1.8.22-1.dsc d7dc9030a88b795bcdf7aaf9ac0a032e56bd3e54 390692 msmtp_1.8.22.orig.tar.xz 3c119fd59e0ae56aeb2557368c3e9bd577ced4fe 488 msmtp_1.8.22.orig.tar.xz.asc 8ba3cb7d5dfba1c3b3423e0cb3913c4c13f507cf 20840 msmtp_1.8.22-1.debian.tar.xz 929b63465c35201318c60891ed2266baef8a2fd5 9394 msmtp_1.8.22-1_source.buildinfo Checksums-Sha256: f33297dde8cb64c977bb209d9604a30fe2f0c3ea72d51156cc98ebdc1b388e0d 2200 msmtp_1.8.22-1.dsc 1b04206286a5b82622335e4eb09e17074368b7288e53d134543cbbc6b79ea3e7 390692 msmtp_1.8.22.orig.tar.xz 8d45cd975546902a51beae66fbf08ad2d30a20a4385f34471cd7a16cb6a87705 488 msmtp_1.8.22.orig.tar.xz.asc 1d97066ca433b708048385a321173d55498a3b1e2030f003442df15f2dc99a37 20840 msmtp_1.8.22-1.debian.tar.xz a8b63a9de782ca7a9472917e81ebd2131df33c48b88d2f09c0ea3ef67fbb5753 9394 msmtp_1.8.22-1_source.buildinfo Files: 66ee8badd560e8927dca282a3338d5bf 2200 mail optional msmtp_1.8.22-1.dsc 8d4ab680f16e9736e24c749015ae858b 390692 mail optional msmtp_1.8.22.orig.tar.xz a98f2259e072dd7203902dd048661fba 488 mail optional msmtp_1.8.22.orig.tar.xz.asc 6aa63a57b942ad34682e907576310dfc 20840 mail optional msmtp_1.8.22-1.debian.tar.xz 08427da3f77a829681a268e75466e5c0 9394 mail optional msmtp_1.8.22-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEETQ1Tfow3vJnf8QuHSwd3I5KdQsMFAmNcNf0ACgkQSwd3I5Kd QsMKQA//Zr+8/gPwFkvrNWuUFPnSXXfmqZADXgHnbbhoNqk6h/wu5kFm95l15UGH vsodNTyDC2Qrwwhge+gWFxAJFqL9y/NCMzWGuMtwTAn3tqgzIAz/eXzOiKdyAJpb sZmvf24SD9xQzG3dPqBeAp8JCeElic5Rop1WkSgZwrsh/wIS9Sp8IPAhKrJL8NfJ E5nwx1DY85NVXb2iTCSB6jIAxUNB7uP+DVeMRiSW7Yj5luLDDV7QnvsPi3DmpfcJ eOiRrcQY5Ouqky2QcVcaohjBGIDyP63x7OCydS/anJLGotcz4X/1uhi8GBfU7a6I xZRnEJ7vD1MDRiVCjpDc7MBq3/jUHw5FRCR7g+TK+Rm7ooeDvuIDDDqZ6orWQiZS V/gWQm3YCUztY6hsT7qfasMLuiqm0km6j5/jAdAOtHAqoVrKoF9rond+T/QL6Hze OmkBps9HcrGNVHvE4kJlX8x7j5OQaTb04KrbMjWWirKp9zTe22yoI4nILWPDNtK8 vsyqE+/SjWBqu6JsQBsq5oPCttbqajjiKK0H+GewY5sPo3YgE8hs/9gEKxKX8Dol NaTwls+nyt8/cRzakrLQBL7hFDViMb/mmPw3XmnP+gEhVIxjGggagQeMqNkzHJVz 6dPaFndjnF9l9yk6LyGdK2CeOsAjo9v33HnnY1SXuEjqmxkeX/E= =X0lR -----END PGP SIGNATURE-----
--- End Message ---
