Public bug reported:
Binary package hint: desktopcouch
Since we're exposing user information to a network interface, we must
take care to protect the information. Simply removing an option in a
user's config file must not disable all security; it should be default-
on, not default-off. We do this by adding a system config file that is
read at desktopcouch startup.
This file is new, and was omitted from 0.4.2-0ubuntu1 .
This bug is not a grave security problem, as it requires user action in
a nonobvious way. We shouldn't let non-beta users be exposed to the
potential though.
** Affects: desktopcouch (Ubuntu)
Importance: Undecided
Assignee: Chad Miller (cmiller)
Status: Confirmed
** Changed in: desktopcouch (Ubuntu)
Status: New => Confirmed
** Changed in: desktopcouch (Ubuntu)
Assignee: (unassigned) => Chad Miller (cmiller)
--
Packaging omission, also install "/etc/xdg/", or else authentication may be off
in desktopcouch
https://bugs.launchpad.net/bugs/438800
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
