option to change defaults restricts access to defaults file
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
shadow (Ubuntu) |
Triaged
|
Medium
|
Unassigned |
Bug Description
The option to update defaults (-D or --defaults along with any other option) results in more restricted rights to the defaults file.
Before using the command:
$ ls -l useradd
-rw-r--r-- 1 root root 1118 Sep 9 13:10 useradd
Now update a default value:
$ sudo useradd -D -s /bin/bash
$ ls -l useradd
-rw------- 1 root root 1197 Sep 9 13:11 useradd
Furthermore, this permissions change isn't readily apparent as there is no error when requesting the display of the defaults as a non-root user. However the data displayed is indeed different:
$ useradd -D
GROUP=100
HOME=/home
INACTIVE=-1
EXPIRE=
SHELL=
SKEL=/etc/skel
CREATE_
$ sudo useradd -D
GROUP=100
HOME=/home
INACTIVE=-1
EXPIRE=
SHELL=/bin/bash
SKEL=/etc/skel
CREATE_
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: passwd 1:4.1.5.
ProcVersionSign
Uname: Linux 3.8.0-30-generic x86_64
NonfreeKernelMo
ApportVersion: 2.9.2-0ubuntu8.4
Architecture: amd64
Date: Mon Sep 9 13:07:25 2013
InstallationDate: Installed on 2009-12-21 (1358 days ago)
InstallationMedia: Ubuntu 9.10 "Karmic Koala" - Release amd64 (20091027)
MarkForUpload: True
SourcePackage: shadow
UpgradeStatus: Upgraded to raring on 2013-04-26 (136 days ago)
modified.
tags: | added: saucy |
Changed in shadow (Ubuntu): | |
importance: | Undecided → Medium |
status: | New → Triaged |