Date: Sat, 11 Jan 2025 16:21:16 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 272902] Security: allow passphrases for WPA-EAP to be saved without using clear text Message-ID: <bug-272902-227-nQmDqzwEk2@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-272902-227@https.bugs.freebsd.org/bugzilla/> References: <bug-272902-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D272902 Graham Perrin <grahamperrin@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|Affects Only Me |Affects Some People Component|kern |conf Summary|Security: allow passphrases |Security: allow passphrases |for WPA-EAP to be saved |for WPA-EAP to be saved |without using clear text in |without using clear text |a world-readable file | --- Comment #2 from Graham Perrin <grahamperrin@gmail.com> --- Cross-reference: <https://lists.freebsd.org/archives/freebsd-desktop/2025-January/005289.htm= l> | <https://mail-archive.freebsd.org/cgi/mid.cgi?07e6179b-00de-4eeb-8282-527b4= 77fdccc> ---- Re: comment 0 > world-readable I have no idea how /etc/wpa_supplicant.conf became world-readable in my cas= e. It's no longer so open:=20 grahamperrin:~ % ls -hl /etc/wpa_supplicant.conf=20 -rw------- 1 root wheel 1.4K 12 Dec 09:21 /etc/wpa_supplicant.conf grahamperrin:~ %=20 I see:=20 chmod 0600 $BSDINSTALL_TMPETC/wpa_supplicant.conf =E2=80=93 in 2011 at <https://github.com/freebsd/freebsd-src/commit/2118f3873fdc9d9a08978465a317= 3b755f0d5e61#diff-cf165779f2234129b5397bcadca5c6c7a1e6970691d807de529654726= cfe8df9R30>, if that's relevant. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-272902-227-nQmDqzwEk2>