Ubuntu
fuse package

fuse.conf permission denied

Bug #794494 reported by Manuel López-Ibáñez on 2011-06-08

312

This bug affects 14 people

Affects		Status	Importance	Assigned to	Milestone
	fuse (Ubuntu)	Fix Released	Medium	Dimitri John Ledkov

Bug Description

For some reason,

-rw-r----- 1 root fuse 215 2011-06-08 12:59 /etc/fuse.conf

However, users are not created by default members of fuse group. Moreover:

adduser manu fuse

leads still to

fusermount: failed to open /etc/fuse.conf: Permission denied
fusermount: option allow_other only allowed if 'user_allow_other' is set in /etc/fuse.conf

Expected: fuse.conf is readable by all

ProblemType: Bug
DistroRelease: Ubuntu 11.04
Package: fuse-utils 2.8.4-1.1ubuntu4
ProcVersionSignature: Ubuntu 2.6.38-8.42-generic-pae 2.6.38.2
Uname: Linux 2.6.38-8-generic-pae i686
NonfreeKernelModules: fglrx
Architecture: i386
Date: Wed Jun 8 13:04:55 2011
EcryptfsInUse: Yes
InstallationMedia: Kubuntu 11.04 "Natty Narwhal" - Release i386 (20110427)
ProcEnviron:
LC_TIME=en_GB.UTF-8
LANGUAGE=
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: fuse
UpgradeStatus: No upgrade log present (probably fresh install)

Tags:

Revision history for this message

Manuel López-Ibáñez (manuellopezibanez) wrote on 2011-06-08:

#1

Dependencies.txt Edit (1.9 KiB, text/plain; charset="utf-8")

Revision history for this message

Manuel López-Ibáñez (manuellopezibanez) wrote on 2011-06-08:

#2

Ah! For adduser to take effect one has to login again! Anyway, why fuse.conf is not readable by all?

Revision history for this message

Launchpad Janitor (janitor) wrote on 2012-04-28:

#3

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in fuse (Ubuntu):
status:	New → Confirmed

Revision history for this message

Anatol Pomozov (anatol) wrote on 2012-05-27:

#4

I also do not see any reason why the file is not readable by all.

"chmod a+r fuse.conf" fixed the situation for me.

Revision history for this message

Frank Breitling (frank-breitling) wrote on 2012-10-25:

#5

After installing vdfuse on Ubuntu 12.10 /etc/fuse.conf has a group id which I don't even find in /etc/groups.

Revision history for this message

Felipe Castillo (fcastillo.ec) wrote on 2013-07-12:

#6

This bug is still present in Ubuntu 13.04
Setting fuse.conf as read to all fixed the problem.

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2013-07-12:

#7

@Ubuntu Security team, can you comment on this bug report? Can /etc/fuse.conf contain password and the like?

Changed in fuse (Ubuntu):
assignee:	nobody → Ubuntu Security Team (ubuntu-security)
information type:	Public → Public Security

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2013-07-12:

#8

The fusermount binary should be 4755.

Could you please give the exact steps necessary to reproduce that error message?

Changed in fuse (Ubuntu):
status:	Confirmed → Incomplete

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2013-07-12:

#9

Ah, it drops privs before trying to read the file.

There's nothing sensitive in that file, permissions can be relaxed to 644 in Ubuntu.

Changed in fuse (Ubuntu):
status:	Incomplete → Confirmed

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2013-07-12:

#10

@mdeslaur

Thanks a lot, will fix it up.

Changed in fuse (Ubuntu):
assignee:	Ubuntu Security Team (ubuntu-security) → Dmitrijs Ledkovs (xnox)
importance:	Undecided → Medium

Revision history for this message

Manuel López-Ibáñez (manuellopezibanez) wrote on 2015-11-05:

#11

Still broken in Ubuntu 14.04

Revision history for this message

jevgtv (tugevus) wrote on 2016-02-13:

#12

I have the same problem on Ubuntu 14.04.3 LTS 64-bit

Revision history for this message

jevgtv (tugevus) wrote on 2016-02-13:

#13

with encfs

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2016-02-23:

#14

New installations get the right permissions, upgraded machines are not changed to 644 as far as I can see.

Dimitri John Ledkov (xnox) on 2016-02-23

Changed in fuse (Ubuntu):
status:	Confirmed → In Progress

Revision history for this message

Launchpad Janitor (janitor) wrote on 2016-02-23:

#15

This bug was fixed in the package fuse - 2.9.4-1ubuntu2

---------------
fuse (2.9.4-1ubuntu2) xenial; urgency=medium

* Upgrade /etc/fuse.conf permissions to current default of 0644. (LP: #794494)

-- Dimitri John Ledkov <email address hidden> Tue, 23 Feb 2016 15:44:39 +0000

Changed in fuse (Ubuntu):
status:	In Progress → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Dependencies.txt Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.