Hatch Windows installer creates properties files with limited read access

Bug #1860187 reported by Bill Erickson on 2020-01-17
This bug affects 1 person
Affects Status Importance Assigned to Milestone

Bug Description

Hatch 0.3.2

In Windows, the hatch.properties and logging.properties files installed in C:\Program Files\Hatch (x86)\ have strict read permissions allowing only the installing user and admin accounts to read the files. The installer should be modified to create properties files that are readable by all users.

If Hatch cannot read the hatch.properties file, it will fall back to storing data in the $HOME\.evergreen directory for the logged in user instead of the C:\ProgramData\Hatch\ directory (or any other directory configured in the properties file).

Kyle Huckins (khuckins) on 2020-01-21
Changed in evergreen:
assignee: nobody → Kyle Huckins (khuckins)
Revision history for this message
Kyle Huckins (khuckins) wrote :

I've pushed a branch here, making use of AccessControl to ensure the .properties files have Read+Execute permissions granted to users that aren't the installing user or Administration:

tags: added: pullrequest
Changed in evergreen:
assignee: Kyle Huckins (khuckins) → nobody
Bill Erickson (berick) on 2020-01-24
Changed in evergreen:
assignee: nobody → Bill Erickson (berick)
Revision history for this message
Bill Erickson (berick) wrote :

I've posted a Windows build using Kyle's updated installer:


To test:

[1] Run the new installer on Windows
[2] Log in to the staff client and register a new workstation.
[3] Confirm the new workstation is stored in C:\ProgramData\Hatch\
[4] Log in to the same Windows machine with a different, non-admin user.
[5] Repeat steps 2 and 3.

Prior to this patch, User 1's data would go to C:\ProgramData\Hatch and User 2's data would go to their home directory under .evergreen.

Changed in evergreen:
assignee: Bill Erickson (berick) → nobody
Changed in evergreen:
milestone: none → 3.6.1
Changed in evergreen:
milestone: 3.6.1 → none
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers