Actions
Bug #13612
closedThe file from Rudder server technique may change permission of the destination parent directory instead of the file
Pull Request:
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
UX impact:
User visibility:
Getting started - demo | first install | level 1 Techniques
Effort required:
Very Small
Priority:
0
Name check:
Reviewed
Fix check:
Checked
Regression:
Description
When the source is a file and the destination is a directory, the source is not copied and the destination permission are modified.
We should change this behaviour.
Updated by Vincent MEMBRÉ about 6 years ago
- Target version changed from 4.3.5 to 4.3.6
Updated by Vincent MEMBRÉ about 6 years ago
- Target version changed from 4.3.6 to 4.3.7
Updated by François ARMAND about 6 years ago
- Severity set to Critical - prevents main use of Rudder | no workaround | data loss | security
- User visibility set to Getting started - demo | first install | level 1 Techniques
- Effort required set to Very Small
- Priority changed from 0 to 122
This is a security issue, because you can mess up file permission with that.
The "very small" is to at least find a way to prevent that behavior.
Updated by Vincent MEMBRÉ almost 6 years ago
- Target version changed from 4.3.7 to 4.3.8
- Priority changed from 122 to 0
Updated by Vincent MEMBRÉ almost 6 years ago
- Target version changed from 4.3.8 to 4.3.9
Updated by Alexis Mousset almost 6 years ago
- Target version changed from 4.3.9 to 4.3.10
Updated by François ARMAND over 5 years ago
- Target version changed from 4.3.10 to 4.3.11
Updated by Vincent MEMBRÉ over 5 years ago
- Target version changed from 4.3.11 to 4.3.12
Updated by Vincent MEMBRÉ over 5 years ago
- Target version changed from 4.3.12 to 4.3.13
Updated by Vincent MEMBRÉ over 5 years ago
- Target version changed from 4.3.13 to 4.3.14
Updated by Vincent MEMBRÉ over 5 years ago
- Target version changed from 4.3.14 to 587
Updated by Vincent MEMBRÉ over 5 years ago
- Target version changed from 587 to 4.3.14
Updated by Alexis Mousset over 5 years ago
- Target version changed from 4.3.14 to 5.0.13
Updated by Vincent MEMBRÉ about 5 years ago
- Target version changed from 5.0.13 to 5.0.14
Updated by Vincent MEMBRÉ about 5 years ago
- Target version changed from 5.0.14 to 5.0.15
Updated by Félix DALLIDET about 5 years ago
- Status changed from New to In progress
- Assignee set to Félix DALLIDET
Updated by Félix DALLIDET about 5 years ago
cfengine offers the "check_type" option on its copy_from bundle to fail if we are dealing with unmatching file type (link/dir/file).
Enforcing it, should solve the problem.
Updated by Félix DALLIDET about 5 years ago
- Status changed from In progress to Pending technical review
- Assignee changed from Félix DALLIDET to Benoît PECCATTE
- Pull Request set to https://github.com/Normation/rudder-techniques/pull/1557
Updated by Félix DALLIDET about 5 years ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder-techniques|86f5113d76c6e7b6e1027b532ce5108c822c29a3.
Updated by Alexis Mousset about 5 years ago
- Name check changed from To do to Reviewed
Updated by Félix DALLIDET almost 5 years ago
- Fix check changed from To do to Error - Blocking
Updated by Félix DALLIDET almost 5 years ago
- Related to Bug #16267: Copying a file to a directory using the "file_from_shared_folder" method results in a success report even if nothing is done added
Updated by Félix DALLIDET almost 5 years ago
- Fix check changed from Error - Blocking to To do
Updated by Félix DALLIDET almost 5 years ago
- Fix check changed from To do to Checked
Updated by Vincent MEMBRÉ almost 5 years ago
This bug has been fixed in Rudder 5.0.15 which was released today.
Updated by Vincent MEMBRÉ about 4 years ago
- Status changed from Pending release to Released
Actions