2013-06-07 20:36:27 |
Scott Moser |
bug |
|
|
added bug |
2013-06-12 20:32:21 |
Serge Hallyn |
walinuxagent (Ubuntu): importance |
Undecided |
High |
|
2013-07-23 14:53:10 |
Ben Howard |
walinuxagent (Ubuntu): assignee |
|
Ben Howard (utlemming) |
|
2013-07-23 16:38:34 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/walinuxagent |
|
2013-07-23 16:56:02 |
Launchpad Janitor |
walinuxagent (Ubuntu): status |
New |
Fix Released |
|
2013-08-07 13:05:33 |
Ben Howard |
description |
inside an azure instance:
$ ls -altr /etc/shadow
---------- 1 root root 902 Jun 7 20:23 /etc/shadow
/usr/sbin/waagent has:
def DeleteRootPassword():
filepath="/etc/shadow"
ReplaceFileContentsAtomic(filepath, "root:*LOCK*:14600::::::\n" + "\n".join(filter(lambda a: not
a.startswith("root:"),
GetFileContents(filepath).split('\n'))))
os.chmod(filepath, 0000)
if IsRedHat():
Run("chcon system_u:object_r:shadow_t:s0 " + filepath)
Log("Root password deleted.")
more correct permissions on that file would be:
$ ls -altr /etc/shadow
-rw-r----- 1 root shadow 1497 May 29 16:51 /etc/shadow
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: walinuxagent 1.3.2-0ubuntu1 [modified: usr/sbin/waagent]
ProcVersionSignature: Ubuntu 3.8.0-23.34-generic 3.8.11
Uname: Linux 3.8.0-23-generic x86_64
ApportVersion: 2.9.2-0ubuntu8
Architecture: amd64
Date: Fri Jun 7 20:32:03 2013
MarkForUpload: True
ProcEnviron:
TERM=screen
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: walinuxagent
UpgradeStatus: No upgrade log present (probably fresh install) |
[Impact]: WALinuxAgent, when provisioning, may delete the root password. However, in doing so, it changes the permissions of the shadow file from 0400 to 000.
[Regression]: This change simple sets the proper permission on /etc/shadow.
[Test Case]: Make sure that the permissions are 0400.
[Originial Report]:
inside an azure instance:
$ ls -altr /etc/shadow
---------- 1 root root 902 Jun 7 20:23 /etc/shadow
/usr/sbin/waagent has:
def DeleteRootPassword():
filepath="/etc/shadow"
ReplaceFileContentsAtomic(filepath, "root:*LOCK*:14600::::::\n" + "\n".join(filter(lambda a: not
a.startswith("root:"),
GetFileContents(filepath).split('\n'))))
os.chmod(filepath, 0000)
if IsRedHat():
Run("chcon system_u:object_r:shadow_t:s0 " + filepath)
Log("Root password deleted.")
more correct permissions on that file would be:
$ ls -altr /etc/shadow
-rw-r----- 1 root shadow 1497 May 29 16:51 /etc/shadow
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: walinuxagent 1.3.2-0ubuntu1 [modified: usr/sbin/waagent]
ProcVersionSignature: Ubuntu 3.8.0-23.34-generic 3.8.11
Uname: Linux 3.8.0-23-generic x86_64
ApportVersion: 2.9.2-0ubuntu8
Architecture: amd64
Date: Fri Jun 7 20:32:03 2013
MarkForUpload: True
ProcEnviron:
TERM=screen
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: walinuxagent
UpgradeStatus: No upgrade log present (probably fresh install) |
|
2013-08-07 13:19:20 |
Ben Howard |
nominated for series |
|
Ubuntu Precise |
|
2013-08-16 03:13:04 |
Adam Conrad |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2013-08-16 03:13:05 |
Adam Conrad |
bug |
|
|
added subscriber SRU Verification |
2013-08-16 22:52:51 |
Ben Howard |
tags |
amd64 apport-bug raring uec-images |
amd64 apport-bug raring uec-images verification-done |
|
2013-10-22 18:16:30 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/raring-proposed/walinuxagent |
|
2013-10-22 18:40:58 |
Stéphane Graber |
bug task added |
|
walinuxagent (Ubuntu Precise) |
|
2013-10-22 18:41:55 |
Stéphane Graber |
nominated for series |
|
Ubuntu Raring |
|
2013-10-22 18:41:55 |
Stéphane Graber |
bug task added |
|
walinuxagent (Ubuntu Raring) |
|
2013-10-22 18:42:52 |
Stéphane Graber |
walinuxagent (Ubuntu Raring): status |
New |
Fix Committed |
|
2013-10-23 22:26:51 |
Ben Howard |
walinuxagent (Ubuntu Precise): importance |
Undecided |
Medium |
|
2013-10-23 22:26:53 |
Ben Howard |
walinuxagent (Ubuntu Raring): importance |
Undecided |
Medium |
|
2013-10-23 22:26:56 |
Ben Howard |
walinuxagent (Ubuntu Precise): assignee |
|
Ben Howard (utlemming) |
|
2013-10-23 22:26:58 |
Ben Howard |
walinuxagent (Ubuntu Raring): assignee |
|
Ben Howard (utlemming) |
|
2013-10-24 18:37:14 |
Launchpad Janitor |
walinuxagent (Ubuntu Raring): status |
Fix Committed |
Fix Released |
|
2013-11-21 16:51:20 |
Ben Howard |
walinuxagent (Ubuntu Precise): status |
New |
Fix Released |
|