Bug 72304 - generated SSL cert RPMs are too liberally permissive
Summary: generated SSL cert RPMs are too liberally permissive
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Satellite 5
Classification: Red Hat
Component: Server
Version: unspecified
Hardware: i386
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Mihai Ibanescu
QA Contact: Fanny Augustin
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2002-08-22 21:13 UTC by Todd Warner
Modified: 2007-07-31 19:09 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2002-08-23 16:21:54 UTC
Target Upstream Version:


Attachments (Terms of Use)

Description Todd Warner 2002-08-22 21:13:13 UTC
ls -l /etc/sysconfig/rhn produces:

-rw-r--r--    1 root     root         rhns-ca-cert-1.0-1.noarch.rpm
-rw-r--r--    1 root     root         rhns-ca-cert-1.0-1.src.rpm
-rw-r--r--    1 root     root         rhns-ssl-cert-1.0-1.noarch.rpm
-rw-r--r--    1 root     root         rhns-ssl-cert-1.0-1.src.rpm

Note: probably should not allow just anyone to copy the
server/satellite/proxy -side certs... and maybe even the client-side certs as 
well.

Comment 1 Mihai Ibanescu 2002-08-22 22:58:24 UTC
Fixed in the latest code.

Comment 2 Josef Komenda 2002-08-23 18:04:06 UTC
Confirmed good in latest build, closing.


Note You need to log in before you can comment on or make changes to this bug.