This is John's email for full disclosure purposes:
{{{
I found a security issue in campsite which should be patched up if possible.
Campsite's cron jobs like notifyendsubs create output which includes the
MySQL password. By default, this password is the MySQL root password. A
person could snoop the email going out from a campsite and use it to
learn the root database password on that machine, and from there could
deface a campsite or learn personal information about subscribers.
>> [
root@jdpipe redhat]- /usr/bin/notifyendsubs
>> sql server: localhost, sql port: 0, sql user: root, sql password:
>> xxxxxxxx, db name: campsite
>> smtp server: localhost, smtp wrapper: /usr/bin/smtp_wrapper
>> sql server: localhost, sql port: 0, sql user: root, sql password:
>> xxxxxxxx, db name: campsite2
>> smtp server: localhost, smtp wrapper: /usr/bin/smtp_wrapper
}}}
Bug
Closed
Minor
{{{
I found a security issue in campsite which should be patched up if possible.
Campsite's cron jobs like notifyendsubs create output which includes the
MySQL password. By default, this password is the MySQL root password. A
person could snoop the email going out from a campsite and use it to
learn the root database password on that machine, and from there could
deface a campsite or learn personal information about subscribers.
>> [root@jdpipe redhat]- /usr/bin/notifyendsubs
>> sql server: localhost, sql port: 0, sql user: root, sql password:
>> xxxxxxxx, db name: campsite
>> smtp server: localhost, smtp wrapper: /usr/bin/smtp_wrapper
>> sql server: localhost, sql port: 0, sql user: root, sql password:
>> xxxxxxxx, db name: campsite2
>> smtp server: localhost, smtp wrapper: /usr/bin/smtp_wrapper
}}}