Bug#682608: Fix
Hi
chuck adams <chuck.adams.k7qo@gmail.com> writes:
> Using the suggested comment that /etc/network/interfaces needed lines
> commented out, I went to a working system and compared the interfaces
> file.
>
> In the installation using the wireless interface the interfaces
> file contained a serious security violation as shown here:
>
> # The primary network interface
> allow-hotplug wlan0
> iface wlan0 inet dhcp
> wpa-ssid NETGEAR
> wpa-psk wittyflower875
>
>
> In that the file contains, in plain ASCII text,
> the ssid and password for the network and the file
> is viewable by all users.
Does anyone know if it's really necessary that /etc/network/interfaces
is world readable? Or could this file set to mode 0600 by d-i if it
contains any sensitive information?
>
> I commented out the lines and added
>
> allow-hotplug eth0
>
> which I don't know is absolutely necessary.
>
> A reboot of the system does bring up the WiFi
> interface without any difficulty that I can see
> at the present time.
>
> Please include a note as to when changes will be made.
> I am aperiodically downloading netinst from the daily-build
> and installing the system from scratch.
We are currently investigating who to best fix this problem. A proposed
(not yet finished) fix can be found in the people/sorina/write_config
branch of netcfg. The currently favoured approach is add a medium
priority question wo select which kind of network configuration should
be written to the installed system. With these options:
1 network-manager configuration
2 configuration in /etc/network/interfaces
3 no configuration at all
If network-manager is installed, option 1 would be the default,
otherwise option 2.
>
> Another bug found. When plugging in a USB thumb memory drive,
> it is not recognized and mounted. This bug may have already
> been reported. I discovered it when I was thinking of writing
> both installs (with and without using wlan0) and doing a
> diff -r ( :-) ) to compare the file systems and the exact
> files that were configured differently. So many bugs and so
> little time.
This is an entirely different bug. Please report it separately. The
relevant package is probably udisks.
Gaudenz
--
Ever tried. Ever failed. No matter.
Try again. Fail again. Fail better.
~ Samuel Beckett ~
Reply to: