CVE-2013-4476: s4:libtls: check for safe permissions of tls private key file (key...
commit66fb9ecfb522ef653c2d74d5e6309485e21d51c3
authorBjörn Baumbach <bb@sernet.de>
Tue, 29 Oct 2013 16:53:59 +0000 (29 17:53 +0100)
committerKarolin Seeger <kseeger@samba.org>
Fri, 8 Nov 2013 09:14:31 +0000 (8 10:14 +0100)
tree58a57b192af13c88da2b54a2e2adb0f81b50e329
parentc417cb7ec3b72edb52f908b6dc39f2c6a50cddc0
CVE-2013-4476: s4:libtls: check for safe permissions of tls private key file (key.pem)

If the tls key is not owned by root or has not mode 0600 samba will not
start up.

Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source4/lib/tls/tls.c
source4/lib/tls/tls_tstream.c