pyjuju

juju upstart scripts (ab)use predictably named files in /tmp

Bug #1135641 reported by James Troup on 2013-02-28

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	pyjuju	Triaged	Low	Unassigned	pyjuju 0.8 "zephr"

Bug Description

| ubuntu@juju-prodstack-pes-r2-instance-1:~$ grep /tmp /etc/init/juju-machine-agent.conf
| exec python -m juju.agents.machine --nodaemon --logfile /var/log/juju/machine-agent.log --session-file /var/run/juju/machine-agent.zksession >> /tmp/juju-machine-agent.output 2>&1
| ubuntu@juju-prodstack-pes-r2-instance-1:~$

Even if YAMA stops this from being actively exploitable, it's still
not a good idea to use predictably named files in a shared
world-writable resource like /tmp.

Kapil Thangavelu (hazmat) on 2013-03-12

Changed in juju:
milestone:	none → 0.8

Curtis Hovey (sinzui) on 2013-10-12

Changed in juju:
importance:	Undecided → Low
status:	New → Triaged

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.