apt plugin should ignore /etc/apt/auth.conf and remove username:password in url
Bug #1804600 reported by
Yuan-Chen Cheng
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sosreport (Ubuntu) |
Fix Released
|
Undecided
|
Yuan-Chen Cheng |
Bug Description
1. apt plugin make a copy of /etc/apt/auth.conf
2. no code to remove username and password in source url if they have.
Hard to say if this is a security issue, however, it's bad from my POV that it's not properly handled.
Changed in sosreport (Ubuntu): | |
status: | New → In Progress |
assignee: | nobody → Yuan-Chen Cheng (ycheng-twn) |
To post a comment you must log in.
upstream bug: https:/ /github. com/sosreport/ sos/issues/ 1514