Package: slapd
Version: 2.1.30-3
Followup-For: Bug #260204
A properly configured debconf (i.e., debconf as it comes by default)
will write password-style templates to /var/cache/debconf/passwords.dat,
rather than /var/cache/debconf/config.dat; the latter indeed isn't
world-writable, while the former is.
While this does reduce the severity of the problem, it still is bad to
do this. After all, it's possible to remove the value once it is no
longer needed. Just do:
db_set slapd/password1 ""
db_set slapd/password2 ""
And the value will be empty; that is, the question will still be in
passwords.dat but the passwords themselves will be gone; and once the
directory is generated, these passwords should not be required anymore
anyway.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.10
Locale: LANG=nl_BE.UTF-8@euro, LC_CTYPE=nl_BE.UTF-8@euro (charmap=UTF-8)
Versions of packages slapd depends on:
ii coreutils [fileutils] 5.2.1-2 The GNU core utilities
ii debconf 1.4.42 Debian configuration management sy
ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an
ii libdb4.2 4.2.52-17 Berkeley v4.2 Database Libraries [
ii libgcrypt11 1.2.0-11 LGPL Crypto library - runtime libr
ii libgnutls11 1.0.16-13 GNU TLS library - runtime library
ii libgpg-error0 1.0-1 library for common error values an
ii libiodbc2 3.52.1-2 iODBC Driver Manager
ii libldap2 2.1.30-3 OpenLDAP libraries
ii libltdl3 1.5.6-4 A system independent dlopen wrappe
ii libsasl2 2.1.19-1.5 Authentication abstraction library
ii libslp1 1.0.11-7 OpenSLP libraries
ii libtasn1-2 0.2.10-4 Manage ASN.1 structures (runtime)
ii libwrap0 7.6.dbs-6 Wietse Venema's TCP wrappers libra
ii perl [libmime-base64-perl] 5.8.4-5 Larry Wall's Practical Extraction
ii psmisc 21.5-1 Utilities that use the proc filesy
ii zlib1g 1:1.2.2-4 compression library - runtime
-- debconf information excluded
|
