[network-admin] WEP key stored in world-readable /etc/network/interfaces
Bug #14392 reported by
Norbert Kiesel
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnome-system-tools (Debian) |
Incomplete
|
Undecided
|
Unassigned | ||
gnome-system-tools (Ubuntu) |
Fix Released
|
High
|
Ubuntu Desktop Bugs | ||
netcfg (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
the WEP key is stored in cleartext in /etc/network/
mode 644.
I'd consider this a security breach.
Changed in gnome-system-tools: | |
assignee: | pitti → nobody |
Changed in wireless-tools: | |
status: | New → Confirmed |
status: | Confirmed → Invalid |
To post a comment you must log in.
Considering that WEP is essentially flawed anyway, and that a user logged into
the system can generally access the network (and mount a cleartext attack too),
this doesn't seem like cause for concern. Martin?