Bug 103023 - /etc/ups/{ups,upssched}.conf should be world-readable
Summary: /etc/ups/{ups,upssched}.conf should be world-readable
Keywords:
Status: CLOSED RAWHIDE
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: nut
Version: 9
Hardware: i386
OS: Linux
medium
low
Target Milestone: ---
Assignee: Than Ngo
QA Contact: Brian Brock
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2003-08-25 16:27 UTC by Jablonovsky Alexander
Modified: 2007-04-18 16:57 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2003-09-09 15:05:05 UTC
Embargoed:


Attachments (Terms of Use)

Description Jablonovsky Alexander 2003-08-25 16:27:44 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Win98; en-US; rv:1.0.1) Gecko/20020823
Netscape/7.0

Description of problem:
The nut-client-1.2.0-6 package installs all configuration files in
/etc/ups with uid/gid 'root.root' and '-rw-------' permissions. With these
permissions the nut package components running under 'nut' uid can't read files
/etc/ups/ups.conf and /etc/ups/upssched.conf.
/etc/ups/ups.conf needs for UPS driver if the preferable configuration
method (the '-a' option) is used. Because the "old" method (full
parameter specification in the command line) is currently used by RedHat 9
installation, wrong permissions for /etc/ups/ups.conf are not essential. But it
is impossible to set up the "early shutdown" (on timer, not on "low battery"
signal) without access to /etc/ups/upssched.conf.


Version-Release number of selected component (if applicable):
nut-client-1.2.0-6

How reproducible:
Always

Steps to Reproduce:
1. Install nut and nut-client
2. Try to setup early shutdown as it is described in
/usr/share/doc/nut-1.2.0/docs/upssched.txt or/and configure
you UPS driver with '-a' flag and the corresponding section in /etc/ups/ups.conf
3. service ups start



Actual Results:  There are error messages in the system log, scheduled shutdown
does not work, UPS driver does not started (if '-a' flag used)


Expected Results:  Normal working

Additional info:

The discussed files don't contain private information like passwords
and IMHO making it world-readable does not break the system security.
Sorry, I don't provide exact copy of error messages (I don't want to
break my system again), but they are simple and not ambiguous.

Comment 1 Than Ngo 2003-09-09 15:05:05 UTC
it's fixed in 1.4.0-1, which will be available in rawhide. thanks for your 
report. 


Note You need to log in before you can comment on or make changes to this bug.