The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors.Referenceshttp://theforeman.org/security.htmlhttp://projects.theforeman.org/issues/1929
