[Pkg-postgresql-public] Bug#920268: marked as done (pgbackrest: /var/lib/pgbackrest is created with unsecure other-readable (755) permissions)

Wed, 23 Jan 2019 09:31:07 -0800 

Your message dated Wed, 23 Jan 2019 17:27:56 +0000
with message-id <[email protected]>
and subject line Bug#920268: fixed in pgbackrest 2.08-2
has caused the Debian Bug report #920268,
regarding pgbackrest: /var/lib/pgbackrest is created with unsecure 
other-readable (755) permissions
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
920268: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920268
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: pgbackrest
Version: 1.12-1

Dear Maintainer,

# ls -lad /var/lib/pgbackrest/
drwxr-xr-x 2 postgres postgres 4096 Dec 15  2016 /var/lib/pgbackrest/

The permissions are 755. As the user guide points out:

https://pgbackrest.org/user-guide.html#quickstart/create-repository

they should most definitely be 750, because the directory will contain database 
backups.

--
Sampo Sorsa

--- End Message ---
--- Begin Message --- 
Source: pgbackrest
Source-Version: 2.08-2

We believe that the bug you reported is fixed in the latest version of
pgbackrest, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Adrian Vondendriesch <[email protected]> (supplier of updated 
pgbackrest package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 23 Jan 2019 14:33:15 +0100
Source: pgbackrest
Binary: pgbackrest pgbackrest-doc
Architecture: source
Version: 2.08-2
Distribution: unstable
Urgency: medium
Maintainer: Debian PostgreSQL Maintainers 
<[email protected]>
Changed-By: Adrian Vondendriesch <[email protected]>
Description:
 pgbackrest - Reliable PostgreSQL Backup & Restore
 pgbackrest-doc - Documentation package for pgbackrest
Closes: 920268
Changes:
 pgbackrest (2.08-2) unstable; urgency=medium
 .
   * Change default permissions of newly created pgbackrest directories and
     config files. (Closes: #920268)
     - Especially /var/lib/pgbackrest might contain sensitive information
       and shouldn't be readable by others. Change default permissions to
       0750.
     - /etc/pgbackrest.conf might contain encryption keys. Change default
       permissions to 0640.
Checksums-Sha1:
 1d6bcb68356fb9c267fcfbb2c93bb8cd1e708bd0 2234 pgbackrest_2.08-2.dsc
 10614d94f560040835e34412594b58704ff39332 6416361 pgbackrest_2.08.orig.tar.gz
 631e230c5171fc05e161e1dc2f3b3439292c11d0 10736 pgbackrest_2.08-2.debian.tar.xz
 ad489354f001a908461ea24b65b3d5f85c100857 7250 pgbackrest_2.08-2_amd64.buildinfo
Checksums-Sha256:
 971d119269fdb8d4e059fb8031c0d44512e5186916a95f5e2fbdefc939cdf90e 2234 
pgbackrest_2.08-2.dsc
 802060f2f9087f9ccf0f44e8e1f401e45e0ce5d50facff0ac0f85232704425bf 6416361 
pgbackrest_2.08.orig.tar.gz
 2eec3c2717f4ac81025823f3c0a9638e9af31116e0fba225440347545ea3db2c 10736 
pgbackrest_2.08-2.debian.tar.xz
 1a7824fad8df0bd606cfcb4642dc0f0ac911517397aeb57a58f1bbda603c1436 7250 
pgbackrest_2.08-2_amd64.buildinfo
Files:
 a57d6815a4ae4b0ecf67e18456733387 2234 database optional pgbackrest_2.08-2.dsc
 909df87e56c797851ece8dc4fd151fa3 6416361 database optional 
pgbackrest_2.08.orig.tar.gz
 8521710150b2d2ab72ea5a61b2ec7880 10736 database optional 
pgbackrest_2.08-2.debian.tar.xz
 d54b5ac9f00108d94e85e4161ec64051 7250 database optional 
pgbackrest_2.08-2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=SVYI
-----END PGP SIGNATURE-----

--- End Message ---
_______________________________________________
pkg-postgresql-public mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-postgresql-public

Reply via email to