[prev in list] [next in list] [prev in thread] [next in thread]
List: freebsd-stable
Subject: Re: Insecure default bsnmpd.conf permissions (CVE-2015-5677)
From: Matt Smith <fbsd () xtaz ! co ! uk>
Date: 2016-01-14 17:10:43
Message-ID: 20160114171043.GA1282 () xtaz ! uk
[Download RAW message or body]
On Jan 14 12:40, Andrea Brancatelli wrote:
>Hello everybody.
>
>I just read the above security advisory. In the solution it says:
>
>"This vulnerability can be fixed by modifying the permission on
>/etc/bsnmpd.conf to owner root:wheel and permission 0600."
>
>I guess it's a typo and the correct filename is /etc/snmpd.config,
>right? There's no /etc/bsnmpd.conf in the default config...
>
I think you may be right. I don't use bsnmp so I just checked the
permissions of the existing file which were 644 and then deleted it and
ran mergemaster. mergemaster then reinstalled the missing file and the
permissions are now 600.
--
Matt
_______________________________________________
freebsd-stable@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic