Package: dma Version: 0.0.2009.07.17-2 Severity: normal Hi,
the file /etc/dma/auth.conf is world readable after installation: $ ls -la /etc/dma/auth.conf -rw-r--r-- 1 root root 186 Sep 1 21:57 /etc/dma/auth.conf While this file doesn't contain any secrets after installation, it is intended to be filled with passwords by the user. So it should not be not world readable by default. Regards, Tino -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.31-rc5-00034-ga33a052-dirty (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages dma depends on: ii debconf [debconf-2.0] 1.5.27 Debian configuration management sy ii libc6 2.9-23 GNU C Library: Shared libraries ii liblockfile1 1.08-3 NFS-safe locking library, includes ii libssl0.9.8 0.9.8k-3 SSL shared libraries Versions of packages dma recommends: ii safecat 1.12-1 safely copy stdin to a file dma suggests no packages. -- debconf information: * dma/relayhost: mail.example.com * dma/dbounceprog: dbounce-simple-safecat * dma/mailname: x61.home -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
