rsyslog: some log files are created world-readable (CVE-2015-3243)
The default for syslog is $FileCreateMode 0644 but the rsyslog.conf
provided by the Debian package sets $FileCreateMode 0640
Reference:
(from redmine: issue id 4406, created on 2015-07-01, closed on 2018-08-23)
- Relations:
- child #4407 (closed)
- child #4408 (closed)
- child #4409 (closed)
- child #4410 (closed)
- Changesets:
- Revision 3cb5210c by Natanael Copa on 2015-07-08T09:21:49Z:
main/rsyslog: fix default permissions (CVE-2015-3243)
ref #4406
- Revision 822733ab by Natanael Copa on 2015-07-08T09:40:03Z:
main/rsyslog: fix default permissions (CVE-2015-3243)
ref #4406
(cherry picked from commit 3cb5210cdac46fb8805d4028df16f5889f393a09)