Bug#413658: netserver can be locked by /tmp/netperf.debug
package netperf severity 413658 serious tags 413658 security retitle 413658 netserver logs to insecure temporary file thanks Since /tmp/netperf.debug is opened without the O_EXCL mode, it's possible to carry out a serious denial-of-service on another user by creating it as a symbolic link to one of their files before they run netperf. It's also given mode 644 which means it can leak information, though this is unlikely to be sensitive. Finally, this is a violation of FHS: when netserver is run as a daemon its log file should be under /var/log. Ben. -- Ben Hutchings Any sufficiently advanced bug is indistinguishable from a feature. signature.asc Description: This is a digitally signed message part
Bug#413658: netserver can be locked by /tmp/netperf.debug
Am Dienstag, den 06.03.2007, 13:56 +0100 schrieb Philippe Coval: > Package: netperf > Version: 2.4.3-2 > Severity: wishlist > > Hello, > I've been confronted to this inconvenience, > so I guess it could help others too > > On lunch netperf's server creates the file /tmp/netperf.debug > with user's ownership (default root) > > And this can cause trouble if serveral users start netserver > (on different port of course). > > Maybe this can be workarounded by adding port number in debug filename > > Also when deamon is stopped, the file is still here, > which may lock users uage of netserver > > Last Wishes : > * '--version' option on client and server > * csv output is welcome too > > Regards > > > -- System Information: > Debian Release: 4.0 > APT prefers testing > APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') > Architecture: i386 (i686) > Shell: /bin/sh linked to /bin/bash > Kernel: Linux 2.6.20-k7-amiloa-rt > Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) > > Versions of packages netperf depends on: > ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries > > netperf recommends no packages. > > -- no debconf information > This 3 bug reports are forwarded to upstream. -- [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#413658: netserver can be locked by /tmp/netperf.debug
Package: netperf Version: 2.4.3-2 Severity: wishlist Hello, I've been confronted to this inconvenience, so I guess it could help others too On lunch netperf's server creates the file /tmp/netperf.debug with user's ownership (default root) And this can cause trouble if serveral users start netserver (on different port of course). Maybe this can be workarounded by adding port number in debug filename Also when deamon is stopped, the file is still here, which may lock users uage of netserver Last Wishes : * '--version' option on client and server * csv output is welcome too Regards -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.20-k7-amiloa-rt Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages netperf depends on: ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries netperf recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
