Description of problem: The default permissions of /etc/prosody/* are weak. If I would put any of my database connection data into the default configuration file (which is expected) then these login credentials could be read by everybody on this local system. Version-Release number of selected component (if applicable): prosody-0.8.2-5.el6.x86_64 How reproducible: Everytime, just set up a plain prosody and have a look to the permissions. Actual results: The default permissions of /etc/prosody/* are weak. Expected results: More hardend default permissions of /etc/prosody/*. Additional info: This issue affects all Fedora and EPEL branches! Please apply the attached patch or better.
Created attachment 738726 [details] Patch suggestion for prosody.spec to harden /etc/prosody/*
prosody-0.8.2-8.fc18 has been submitted as an update for Fedora 18. https://admin.fedoraproject.org/updates/prosody-0.8.2-8.fc18
prosody-0.8.2-6.el6 has been submitted as an update for Fedora EPEL 6. https://admin.fedoraproject.org/updates/prosody-0.8.2-6.el6
prosody-0.8.2-6.fc17 has been submitted as an update for Fedora 17. https://admin.fedoraproject.org/updates/prosody-0.8.2-6.fc17
prosody-0.8.2-9.el5 has been submitted as an update for Fedora EPEL 5. https://admin.fedoraproject.org/updates/prosody-0.8.2-9.el5
prosody-0.8.2-9.el5 has been pushed to the Fedora EPEL 5 testing repository.
prosody-0.8.2-9.el5 has been pushed to the Fedora EPEL 5 stable repository.
prosody-0.8.2-6.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
prosody-0.8.2-8.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
prosody-0.8.2-6.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
prosody-0.8.2-10.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/prosody-0.8.2-10.fc19
prosody-0.8.2-10.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.