Bug 698984

Summary: v7 sets /var/v7/store as world-writeable
Product: [Retired] Red Hat Hardware Certification Program Reporter: Greg Nichols <gnichols>
Component: Test Suite (harness)Assignee: Greg Nichols <gnichols>
Status: CLOSED ERRATA QA Contact: Red Hat Kernel QE team <kernel-qe>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 1.3CC: czhang, rlandry, xiqin, yuchen
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-05-09 16:12:14 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
Makefile patch changing initialization ownership of /var/v7/store to apache
none
v7 spec file patch setting ownership of /var/v7 to apache none

Description Greg Nichols 2011-04-22 14:12:02 UTC
Description of problem:

v7 sets the directory /var/v7/store as writeable by everyone.   It should set this directory as owned by apache, and restrict writes to apache.

This directory is used by the server to support network testing; a v7 cgi writes to this directory during the network test, and serves files for verification.


Version-Release number of selected component (if applicable):

v7 1.3 R35

Comment 2 Greg Nichols 2011-04-22 14:15:04 UTC
Created attachment 494230 [details]
Makefile patch changing initialization ownership of /var/v7/store to apache

Comment 3 Greg Nichols 2011-04-26 15:21:30 UTC
Created attachment 494948 [details]
v7 spec file patch setting ownership of /var/v7 to apache

Comment 7 Caspar Zhang 2011-05-01 10:10:13 UTC
This bug does not need a Tech Note because of:

1. A Red Hatter reported it
2. It only happened in an intermediate version.

Comment 8 errata-xmlrpc 2011-05-09 16:12:14 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2011-0497.html