[bug-notifications] [libssl0_9_8 0004845]: Permissions on /etc/opt/csw/ssl too restrictive

Mantis Bug Tracker noreply at opencsw.org
Sat Apr 21 01:08:29 CEST 2012


The following issue has been CLOSED 
====================================================================== 
https://www.opencsw.org/mantis/view.php?id=4845 
====================================================================== 
Reported By:                dam
Assigned To:                yann
====================================================================== 
Project:                    libssl0_9_8
Issue ID:                   4845
Category:                   regular use
Reproducibility:            always
Severity:                   minor
Priority:                   normal
Status:                     closed
Resolution:                 fixed
Fixed in Version:           
====================================================================== 
Date Submitted:             2011-10-18 22:44 CEST
Last Modified:              2012-04-21 01:08 CEST
====================================================================== 
Summary:                    Permissions on /etc/opt/csw/ssl too restrictive
Description: 
Commands trying to use ssl as regular user fail like this:

web at web [web]:/home/web > host mirror.opencw.org
Auto configuration failed
1:error:0200100D:system library:fopen:Permission
denied:bss_file.c:126:fopen('/opt/csw/ssl/openssl.cnf','rb')
1:error:2006D002:BIO routines:BIO_new_file:system lib:bss_file.c:131:
1:error:0E078002:configuration file routines:DEF_LOAD:system
lib:conf_def.c:199:
zsh: 5909 exit 1     host mirror.opencw.org

The permissions of /etc/opt/csw/ssl are 0700 whereas it should be safe to
have 0755.
====================================================================== 

---------------------------------------------------------------------- 
 (0009576) yann (manager) - 2012-02-05 10:29
 https://www.opencsw.org/mantis/view.php?id=4845#c9576 
---------------------------------------------------------------------- 
Should be fixed with package 0.9.8t,REV=2012.01.23 recently uploaded in the
unstable repository.



More information about the bug-notifications mailing list