Date: Sat, 11 Jan 2025 16:21:16 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 272902] Security: allow passphrases for WPA-EAP to be saved without using clear text Message-ID: <bug-272902-227-nQmDqzwEk2@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-272902-227@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=272902 Graham Perrin <grahamperrin@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|Affects Only Me |Affects Some People Component|kern |conf Summary|Security: allow passphrases |Security: allow passphrases |for WPA-EAP to be saved |for WPA-EAP to be saved |without using clear text in |without using clear text |a world-readable file | --- Comment #2 from Graham Perrin <grahamperrin@gmail.com> --- Cross-reference: <https://lists.freebsd.org/archives/freebsd-desktop/2025-January/005289.html>; | <https://mail-archive.freebsd.org/cgi/mid.cgi?07e6179b-00de-4eeb-8282-527b477fdccc>; ---- Re: comment 0 > world-readable I have no idea how /etc/wpa_supplicant.conf became world-readable in my case. It's no longer so open: grahamperrin:~ % ls -hl /etc/wpa_supplicant.conf -rw------- 1 root wheel 1.4K 12 Dec 09:21 /etc/wpa_supplicant.conf grahamperrin:~ % I see: chmod 0600 $BSDINSTALL_TMPETC/wpa_supplicant.conf – in 2011 at <https://github.com/freebsd/freebsd-src/commit/2118f3873fdc9d9a08978465a3173b755f0d5e61#diff-cf165779f2234129b5397bcadca5c6c7a1e6970691d807de529654726cfe8df9R30>, if that's relevant. -- You are receiving this mail because: You are the assignee for the bug.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-272902-227-nQmDqzwEk2>