Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 88937

Summary: net-analyzer/nagios-core NRPE nrpe.cfg false right
Product: Gentoo Security Reporter: Romang <zataz>
Component: Default ConfigsAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: netmon
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Romang 2005-04-13 02:07:42 UTC 
Hello,

/etc/nagios/nrpe.cfg don't need to have rw-r--r-- with root:root

should be rw-r----- with root:nagios

No need to others to read the NRPE config file

Regards.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.

Actual Results:  
Every body could read NRPE config file

Expected Results:  
root should read and modify NRPE config file, nagios need just to read it
Comment 1 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-04-13 02:53:16 UTC 
netmon/eldad please advise.
Comment 2 Eldad Zack (RETIRED) gentoo-dev 2005-04-13 04:44:01 UTC 
Fixed in CVS. I don't think this calls for rev bump, as nrpe.cfg doesn't contain passwords or secrets.

Sune, cdo you think this calls for bump? If not, this bug can be closed.
Comment 3 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-04-13 05:07:50 UTC 
A bump would fix it for users upgrading. No GLSA will be issued though.
Comment 4 Eldad Zack (RETIRED) gentoo-dev 2005-04-13 05:25:21 UTC 
I don't think so... since if the file wasn't modified it would be left with prior permissions and if it was modified, no one would merge the update since it is an example config.
Comment 5 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2005-04-13 07:16:33 UTC 
That make sense -> Closing.