Package installs files with loose permissions
Bug #1820992 reported by
Chris MacNaughton
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Keystone Charm |
Invalid
|
Undecided
|
Unassigned | ||
keystone (Ubuntu) |
Invalid
|
High
|
Unassigned |
Bug Description
The OpenStack Security Guide [1] suggests that the listed files should have permissions of 640 (or tighter), below are files delivered via the package that differ from that recommendation:
- /etc/keystone/
- /etc/keystone/
- /etc/keystone/
This is on a fresh Bionic (Queens) package
To post a comment you must log in.
It is also recommended that the files be owned by keystone:keystone rather than root:root