From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513 Description of problem: After installing any of the kernel update packages on either RedHat 7.2 or 7.3, /boot/grub/grub.conf is left with mode 644 which allows anyone to read it. This might be a security problem for sites that set grub password (which is stored in either encrypted or clear text form in /boot/grub/grub.conf) Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1.rpm -ivh kernel-2.4.18-5.i686.rpm 2. 3. Actual Results: /boot/grub/grub.conf is world readable Expected Results: /boot/grub/grub.conf should be readable only by root. Additional info:
new (rawhide) versions of grubby preserve the permissions that were originally on the file