| commit | 66fb9ecfb522ef653c2d74d5e6309485e21d51c3 | |
| author | Björn Baumbach <bb@sernet.de> | |
| Tue, 29 Oct 2013 16:53:59 +0000 (29 17:53 +0100) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Fri, 8 Nov 2013 09:14:31 +0000 (8 10:14 +0100) | ||
| tree | 58a57b192af13c88da2b54a2e2adb0f81b50e329 | treesnapshot (tar.gz zip) |
| parent | c417cb7ec3b72edb52f908b6dc39f2c6a50cddc0 | commitdiff |
CVE-2013-4476: s4:libtls: check for safe permissions of tls private key file (key.pem)
If the tls key is not owned by root or has not mode 0600 samba will not
start up.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
If the tls key is not owned by root or has not mode 0600 samba will not
start up.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
| source4/lib/tls/tls.c | diffblobblamehistory | |
| source4/lib/tls/tls_tstream.c | diffblobblamehistory |