Re: /home/loser is with permissions 755, default umask 0022

To: Giacomo Catenazzi <cate@debian.org>
Cc: "debian-security@lists.debian.org" <debian-security@lists.debian.org>
Subject: Re: /home/loser is with permissions 755, default umask 0022
From: Georgi Guninski <gguninski@gmail.com>
Date: Fri, 13 Nov 2020 09:18:46 +0200
Message-id: <[🔎] CAGUWgD-eHZqxn9FLxTT7FS_HaLQTXVkYQ5aO84Z8UQ0MoEsxng@mail.gmail.com>
In-reply-to: <63bddf92-b066-33a6-1b01-de84d815dc36@debian.org>
References: <CAGUWgD9K=5xmePE52p23eRFPJh-z4j9WVLTp8hy1PgX6DX-ftQ@mail.gmail.com> <63bddf92-b066-33a6-1b01-de84d815dc36@debian.org>

Some more exploit vectors from the FD list:
https://seclists.org/fulldisclosure/2020/Nov/13

Partial results:

1. mutt (text email client) exposes ~/.mutt/muttrc,
which might contain the imap password in plaintext.

2. Some time ago on a multiuser debian mirror we found a lot of data,
including the wordpress password of the admin.

3. Anything created by EDITOR NEWFILE is readable, unless the directory
prevents. This include root doing EDITOR /etc/NEWFILE

Reply to:

Follow-Ups:
- Re: /home/loser is with permissions 755, default umask 0022
  - From: Richard van den Berg <richard@vdberg.org>
- Re: /home/loser is with permissions 755, default umask 0022
  - From: Bjørn Mork <bjorn@mork.no>

Prev by Date: Re: Is chromium updated?
Next by Date: Re: Is chromium updated?
Previous by thread: FYI: Ransomware trojan targets gnu/linux
Next by thread: Re: /home/loser is with permissions 755, default umask 0022
Index(es):
- Date
- Thread