Bug#356285: apache2-utils: add note to manpage that htpasswd is not safe for setuid/sudo

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#356285: apache2-utils: add note to manpage that htpasswd is not safe for setuid/sudo
From: Stefan Fritsch <sf@sfritsch.de>
Date: Fri, 10 Mar 2006 22:31:00 +0100
Message-id: <[🔎] 20060310213100.1326.7261.reportbug@k.local>
Reply-to: Stefan Fritsch <sf@sfritsch.de>, 356285@bugs.debian.org

Package: apache2-utils
Version: 2.0.55-4
Severity: wishlist

As a followup to CVE-2006-1078 and CVE-2006-1079:

This note from the htpasswd source:

"NOTE! This program is not safe as a setuid executable!  Do not make it
setuid!"

should also be in the man page.

Reply to:

Prev by Date: Bug#355858: marked as done (apache segfaults (sig 11) when using mod_rewriterule, amd64 specific)
Next by Date: Bug#45977: meet me soon
Previous by thread: Bug#355858: marked as done (apache segfaults (sig 11) when using mod_rewriterule, amd64 specific)
Next by thread: Bug#45977: meet me soon
Index(es):
- Date
- Thread