| commit | e737fc794ebd614886ea16cb51850bceaf3ef2e0 | |
| author | Björn Baumbach <bb@sernet.de> | |
| Tue, 29 Oct 2013 16:53:59 +0000 (29 17:53 +0100) | ||
| committer | Karolin Seeger <kseeger@samba.org> | |
| Fri, 8 Nov 2013 09:55:07 +0000 (8 10:55 +0100) | ||
| tree | 6874ab3673f6287f3da92ec82c8db320fbee4d75 | treesnapshot (tar.gz zip) |
| parent | 2ca3eae4c50316a723ca9fcf8ec766d8b40b3908 | commitdiff |
CVE-2013-4476: s4:libtls: check for safe permissions of tls private key file (key.pem)
If the tls key is not owned by root or has not mode 0600 samba will not
start up.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
If the tls key is not owned by root or has not mode 0600 samba will not
start up.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=10234
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
Signed-off-by: Björn Baumbach <bb@sernet.de>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
| source4/lib/tls/tls.c | diffblobblamehistory | |
| source4/lib/tls/tls_tstream.c | diffblobblamehistory |