Re: [PATCH master f15-branch] crypttab should not be work-readable (#692254).

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> Under normal installer conditions this works fine, but if the storage
> module ends up being used by something outside anaconda there is a race
> condition for access to the file. It would probably be safer to do:
> 
> origmask = os.umask(0077)
> open(crypttab_path, "w").write(crypttab)
> os.umask(origmask)
> 
> so that the file never exists with world readable permissions.

Changed.

- Chris

_______________________________________________
Anaconda-devel-list mailing list
Anaconda-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/anaconda-devel-list


[Index of Archives]     [Kickstart]     [Fedora Users]     [Fedora Legacy List]     [Fedora Maintainers]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]
  Powered by Linux