The 'SWAP' file (filesystem-based swap space) created by the installer has mode 0755 (-rwxr-xr-x).
Making swapspace world-readable is a major security issue: for instance, passwords can be read from swapped-out processes.
The swap file should have mode 0600.
Reproducible: Didn't try
Steps to Reproduce:
Upgrade a RedHat 7.0 system to RedHat 7.1 using network installation.
Let there be insufficient swapspace on the system, e.g., less than available RAM.
When prompted for additional swap space, choose to create a swap file on an existing ext2 partition.
Actual Results: SWAP file created, mode 0755.
Expected Results: SWAP file created, mode 0600.
We will look into this. Thanks for your report.
I have verified this behavior.
msf, has this issue been resolved?
An errata has been released to address this issue.
Advisory ID RHSA-2001:058-04 is available at
Thanks for your report.
*** Bug 47285 has been marked as a duplicate of this bug. ***