Ubuntu
ubuntu-raspi-settings package

Warning: Permissions for /etc/netplan/01-use-network-manager.yaml are too open. Netplan configuration should NOT be accessible by others.

Bug #2042866 reported by fprietog
18
This bug affects 2 people
Affects Status Importance Assigned to Milestone
ubuntu-raspi-settings (Ubuntu)
Fix Released
Undecided
Dave Jones

Bug Description

This warning is shown in the system journal (during boot):

nov 06 17:15:23 fpgrpi generate[840]: Permissions for /etc/netplan/01-use-network-manager.yaml are too open. Netplan configuration should NOT be accessible by others.

The file /etc/netplan/01-use-network-manager.yaml came from the package ubuntu-raspi-settings-desktop and its post install permissions are -rw-r--r-- (group and others readable).

A simple workaround is to remove the file read permission for group and others, as suggested, using this command:

sudo chmod 600 /etc/netplan/01-use-network-manager.yaml

Additional info:
----------------
OS: Ubuntu 23.10 aarch64 (Mantic)
Host: Raspberry Pi 4 Model B Rev 1.4
Kernel: 6.5.0-1006-raspi

# lsb_release -r
No LSB modules are available.
Release: 23.10

# apt-cache policy ubuntu-raspi-settings-desktop
ubuntu-raspi-settings-desktop:
  Instalados: 23.10.6
  Candidato: 23.10.6
  Tabla de versión:
 *** 23.10.6 500
        500 http://ports.ubuntu.com/ubuntu-ports mantic/main arm64 Packages
        100 /var/lib/dpkg/status

fprietog (fprietog)
affects: ubuntu-settings (Ubuntu) → ubuntu-raspi-settings (Ubuntu)
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in ubuntu-raspi-settings (Ubuntu):
status: New → Confirmed
Revision history for this message
Dave Jones (waveform) wrote :

I'm fairly sure we can just ditch that file entirely in ubuntu-raspi-settings now, as ubuntu-desktop-settings should provide an equivalent under /lib.

Changed in ubuntu-raspi-settings (Ubuntu):
assignee: nobody → Dave Jones (waveform)
status: Confirmed → In Progress
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package ubuntu-raspi-settings - 24.04.2

---------------
ubuntu-raspi-settings (24.04.2) noble; urgency=medium

  * Removed etc/netplan/01-use-network-manager.yaml: An equivalent is
    now provided under /lib by ubuntu-desktop-settings (LP: #2042866)
  * usr/share/initramfs-tools/hooks/zz-exclude-nvidia: New hook to exclude
    nvidia modules from the raspi initramfs (LP: #2060032)
  * usr/bin/update-v3d-config: Add script and corresponding service to update
    the X11 configuration for Pi 5 displays (LP: #2044718)
  * etc/X11/xorg.conf.d/99-vc4-primary.conf: Renamed to 99-v3d.conf
  * d/ubuntu-raspi-settings-desktop.lintian-overrides: Remove unknown tags,
    add tags for update-v3d-config
  * d/ubuntu-raspi-settings.lintian-overrides: Add override for appstream
    metadata
  * ubuntu-raspi-settings: Removed lz4 dependency; we removed the need for
    this in 24.04.1 when removing the obsolete initramfs-tools hack
  * Remove meson build dependency; dh_install is sufficient

 -- Dave Jones <email address hidden> Wed, 03 Apr 2024 14:37:51 +0100

Changed in ubuntu-raspi-settings (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.