Uploaded image for project: 'ZABBIX FEATURE REQUESTS'
  1. ZABBIX FEATURE REQUESTS
  2. ZBXNEXT-2565

insecure permissions for zabbix_server_XXXX.pinger files

    XMLWordPrintable

    Details

    • Type: Change Request
    • Status: Open
    • Priority: Trivial
    • Resolution: Unresolved
    • Affects Version/s: 2.2.7
    • Fix Version/s: None
    • Component/s: Server (S)
    • Environment:
      CentOS 6.6 x86_64

      Description

      Temp files for fping are created world readable:

      [[email protected] ~]# ls -l /tmp/zabbix_*pinger
      rw-rw-r- 1 zabbix zabbix 383 nov 5 09:24 /tmp/zabbix_server_5498.pinger
      rw-rw-r- 1 zabbix zabbix 13 nov 5 09:24 /tmp/zabbix_server_5502.pinger

      AFAIK these file contain hostnames only, but it would be better to be on the safe side and supress the read flag for others.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            albertodiaz Alberto Díaz
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: