74693 – mistake in "BIOS and Boot Loader Security"

Bug 74693 - mistake in "BIOS and Boot Loader Security"

Summary: mistake in "BIOS and Boot Loader Security"

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	rhl-sg
Sub Component:
Version:	8.0
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Johnray Fuller
QA Contact:	Tammy Fox
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2002-09-30 22:34 UTC by Michael Schwendt
Modified:	2007-04-18 16:46 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2002-11-04 23:20:19 UTC
Embargoed:

Attachments	(Terms of Use)

Description Michael Schwendt 2002-09-30 22:34:02 UTC

From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020827

Description of problem:

Chapter 4. Workstation Security, BIOS and Boot Loader Security, at the bottom:

> Warning 
> 
> The /etc/lilo.conf file is world-readable. If you are password
> protecting LILO, it essential that you only allow root to read and
> edit the file since all passwords are in plain text. To do this,
> type the following command as root:
>
> chmod 600  /boot/grub/grub.conf

Should read

  chmod 600 /etc/lilo.conf

of course. The advanced user will know this, though.


Version-Release number of selected component (if applicable):
rhl-sg(EN)-8.0-HTML-RHI (2002-08-30T11:29-0400)

Comment 1 Johnray Fuller 2002-10-14 17:01:26 UTC

I will be issuing an errata on this shortly.

Thanks you so much for catching that -- not sure how that slipped through :-(

Johnray

Comment 2 Johnray Fuller 2002-11-04 20:40:46 UTC

I could not find this error on any of the current Docs.

I know it at one time existed, but the printed version is correct as is the HTML
and PDF on the Web site.

If you find a link to this error, let me know and I'll fix it.

As it satnds, I am closing this bug as it is corrected already.

Thank you so much for your help!

Johnray

Comment 3 Michael Schwendt 2002-11-04 22:02:17 UTC

For sake of tracking bugs, please do me a favour and don't close it as NOTABUG,
but as FIXED or something like that. It *is* a bug in exactly the version I have
specified in the bug report. That is the version of the documentation that ships
with Psyche on the Documentation CD. Wonder why the intro to each guide asks the
user to report that version number? If the bug got fixed meanwhile with online
updates, it got fixed. But that doesn't make this NOTABUG.

Comment 4 Michael Schwendt 2002-11-04 22:06:09 UTC

Btw, the following page contains the version of the docs with this bug:

http://www.europe.redhat.com/documentation/rhl8.0/rhl-sg-en-8.0/s1-wstation-boot-sec.php3

Comment 5 Michael Schwendt 2002-11-04 22:09:50 UTC

And another one: When you fix bugs/typos like this, please consider updating the
manual's version identifier. Here's a fixed version of the guide with an
unchanged manual intentifier:

http://www.redhat.com/docs/manuals/linux/RHL-8.0-Manual/security-guide/s1-intro-more-to-come.html#S2-INTRO-FEEDBACK

Comment 6 Johnray Fuller 2002-11-04 23:24:48 UTC

Okay, closing as "errata," since there is no "fixed."

I did not know you were referring to the Docs-CD version of the docs. The issue
was fixed in the printed and online versions, but the CD is made before that.

I will send your comments to the team and see if we can correct the versioning
sitution.

Thanks for your help.

J

Comment 7 Johnray Fuller 2002-11-04 23:51:20 UTC

One final note, current policy is to change bookdate if there is major, such as
 rewriting or removing a section.

We are discussing ways to clarify the Bug posting Text so that it is more clear.

J

Comment 8 Johnray Fuller 2002-11-05 01:30:17 UTC

Oops, so much for proof reading in the previous post...

By major, I meant major changes.

Sorry,
J

Note You need to log in before you can comment on or make changes to this bug.