Hello Adam, thanks for your review.
Since the patch is only about suppressing the cron emails, I now use /dev/null. It's uploaded into git and to mentors. CU Jörg Am Montag, dem 24.10.2022 um 12:27 +0200 schrieb Adam Borowski: > On Mon, Oct 24, 2022 at 08:55:59AM +0200, Jörg Frings-Fürst wrote: > > ipmiutil (3.1.8-3) unstable; urgency=medium > > . > > * debian/patches/0705-crontab.patch: Fix overwrite binary > > (Closes: #1022240). > > * * * * * root $prog -r > /tmp/wdt.lastrun 2&>1 > > Could you please pick a location that's not writeable by any > unprivileged > user? > > While dropping a symlink there is less fun if fs.protected_symlinks > is 1 > (it is by default on Debian), that setting might be for some reason > off > -- and even if it's on, merely disabling monitoring is still a vuln. > > > Meow! -- New: GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB 30EE 09F8 9F3C 8CA1 D25D GPG key (long) : 09F89F3C8CA1D25D GPG Key : 8CA1D25D CAcert Key S/N : 0E:D4:56 Old pgp Key: BE581B6E (revoked since 2014-12-31). Jörg Frings-Fürst D-54470 Lieser git: https://jff.email/cgit/ Threema: SYR8SJXB Wire: @joergfringsfuerst Skype: joergpenguin Ring: jff Telegram: @joergfringsfuerst My wish list: - Please send me a picture from the nature at your home.
signature.asc
Description: This is a digitally signed message part