Actually the problem only occursa if debconf configuration fails or is skipped. Only then will the example aiccu.conf be copied with world readable permissions. aiccu.postinst sets the permissions correctly if a configuration exists, otherwise it doesn't touch the installed aiccu.conf. Yet if you edit the example aiccu.conf manually, it will still have world readable permissions. So this might not classify as a bug after all. Should aiccu.postinst set the permissions of aiccu.conf to 600 even if no configuration exists or if the package was upgraded? Someone could have the the file group readable by intent, for example.
-- /etc/aiccu.conf world readable by default https://bugs.launchpad.net/bugs/515087 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
