[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#682608: Fix



Hi

chuck adams <chuck.adams.k7qo@gmail.com> writes:

> Using the suggested comment that /etc/network/interfaces needed lines
> commented out, I went to a working system and compared the interfaces
> file.
>
> In the installation using the wireless interface the interfaces
> file contained a serious security violation as shown here:
>
> # The primary network interface
> allow-hotplug wlan0
> iface wlan0 inet dhcp
> 	wpa-ssid NETGEAR
> 	wpa-psk  wittyflower875
>
>
> In that the file contains, in plain ASCII text,
> the ssid and password for the network and the file
> is viewable by all users.

Does anyone know if it's really necessary that /etc/network/interfaces
is world readable? Or could this file set to mode 0600 by d-i if it
contains any sensitive information?

>
> I commented out the lines and added 
>
> allow-hotplug eth0
>
> which I don't know is absolutely necessary.
>
> A reboot of the system does bring up the WiFi
> interface without any difficulty that I can see
> at the present time.
>
> Please include a note as to when changes will be made.
> I am aperiodically downloading netinst from the daily-build
> and installing the system from scratch.

We are currently investigating who to best fix this problem. A proposed
(not yet finished) fix can be found in the people/sorina/write_config
branch of netcfg. The currently favoured approach is add a medium
priority question wo select which kind of network configuration should
be written to the installed system. With these options:
1 network-manager configuration
2 configuration in /etc/network/interfaces
3 no configuration at all

If network-manager is installed, option 1 would be the default,
otherwise option 2.

>
> Another bug found.  When plugging in a USB thumb memory drive,
> it is not recognized and mounted.  This bug may have already
> been reported.  I discovered it when I was thinking of writing
> both installs (with and without using wlan0) and doing a 
> diff -r  (  :-)  ) to compare the file systems and the exact
> files that were configured differently.  So many bugs and so
> little time.

This is an entirely different bug. Please report it separately. The
relevant package is probably udisks.

Gaudenz

-- 
Ever tried. Ever failed. No matter.
Try again. Fail again. Fail better.
~ Samuel Beckett ~


Reply to: