/etc/libuser.conf is world-readable
/etc/libuser.conf stores the ldap password in plain text format.
The file must be readable to the root user only.
#3 Updated by Davide Principi about 8 years ago
- Due date set to 05/22/2012
- Status changed from MODIFIED to 7
- Assignee set to Davide Principi
- Start date set to 05/22/2012
- Estimated time changed from 4.00 to 1.00
No problem occurs if the libuser client tool are runned with root privileges, that is the common case.