Ubuntu
juju-core package

  1. Bug #1208430
  2. Activity log

Activity log for bug #1208430

Date Who What changed Old value New value Message
2013-08-05 10:57:08 James Page bug added bug
2013-08-05 10:57:15 James Page bug task added juju-core
2013-08-05 10:57:34 James Page description I noticed that the mongodb instance that juju creates runs as root; this is not great from a priviledge escalation point of view - if the database is compromise by some sort of zero-day exploit in the future, the access to the database might mean root access to the server its running on. I noticed that the mongodb instance that juju creates runs as root; this is not great from a priviledge escalation point of view - if the database is compromised by some sort of zero-day exploit in the future, then access to the database might mean root access to the server its running on.
2013-08-05 10:59:24 James Page juju-core (Ubuntu): status New Triaged
2013-08-05 10:59:26 James Page juju-core (Ubuntu): importance Undecided Medium
2013-10-09 03:10:27 Curtis Hovey juju-core: status New Triaged
2013-10-09 03:10:31 Curtis Hovey juju-core: importance Undecided High
2013-10-09 03:10:36 Curtis Hovey tags mongodb
2013-11-28 13:41:50 Martin Packman bug added subscriber Martin Packman
2013-11-28 13:48:45 James Page juju-core (Ubuntu): importance Medium High
2014-01-02 14:45:02 William Reade juju-core: assignee Nate Finch (natefinch)
2014-04-01 12:34:08 Mark Ramm juju-core: milestone 1.18.0
2014-04-07 17:34:59 Mark Ramm juju-core: importance High Critical
2014-04-07 17:38:57 John A Meinel juju-core: milestone 1.19.0
2014-04-07 17:39:00 John A Meinel juju-core: assignee Nate Finch (natefinch)
2014-04-14 03:50:08 Tim Penhey juju-core: importance Critical High
2014-05-12 18:06:40 Canonical Juju QA Bot juju-core: importance High Medium
2016-10-19 07:02:42 Anastasia juju-core: status Triaged Won't Fix