ceilometer charm creates world-readable /etc/ceilometer/ceilometer.conf, exposing credentials
Bug #1588391 reported by
Paul Gear
This bug affects 4 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Ceilometer Charm |
Invalid
|
High
|
Liam Young | ||
Ubuntu Cloud Archive |
Fix Released
|
High
|
Corey Bryant | ||
ceilometer (Juju Charms Collection) |
Invalid
|
High
|
Liam Young | ||
ceilometer (Ubuntu) |
Fix Released
|
High
|
Corey Bryant |
Bug Description
On a newly-installed system using ceilometer from the charm store, /etc/ceilometer
ubuntu@
-rw-r--r-- 1 ceilometer ceilometer 1140 Jun 2 14:12 /etc/ceilometer
Permissions should be changed to 0640 at a maximum.
description: | updated |
affects: | charms → ceilometer (Juju Charms Collection) |
Changed in ceilometer (Juju Charms Collection): | |
status: | New → Confirmed |
importance: | Undecided → High |
assignee: | nobody → Liam Young (gnuoy) |
milestone: | none → 17.01 |
tags: | added: canonical-bootstack |
Changed in charm-ceilometer: | |
assignee: | nobody → Liam Young (gnuoy) |
importance: | Undecided → High |
status: | New → Confirmed |
Changed in ceilometer (Juju Charms Collection): | |
status: | Confirmed → Invalid |
Changed in charm-ceilometer: | |
status: | Confirmed → Invalid |
Changed in cloud-archive: | |
importance: | Undecided → High |
Changed in ceilometer (Ubuntu): | |
importance: | Undecided → High |
Changed in cloud-archive: | |
assignee: | nobody → Corey Bryant (corey.bryant) |
Changed in ceilometer (Ubuntu): | |
assignee: | nobody → Corey Bryant (corey.bryant) |
Changed in cloud-archive: | |
status: | New → Fix Committed |
Changed in cloud-archive: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
I think it's the /etc/ceilometer directory which should be 750 rather than 755