Return
-
Title
permissions of .policy_repos.update are world writeable -
Description
Security scans are reporting a vulnerability on all qpm4s unix servers because the permissions are bad on this file:
-rw-rw-rw- 1 root system 0 Aug 05 15:39 /etc/opt/quest/qpm4u/.qpm4u/.policy_repos.update
Is there a reason for the world writeable permissions on this file or can the permissions be lowered?
-
Cause
This was a defect in the QPM installation package. -
Resolution
STATUSIssue fixed in version 6.0.0-050. The latest versions of Privilege Manager can be found here:Privilege Manager for Unix:Privilege Manager for Sudo: -
Change Request
0006474