Restrict access privilege of mtce config files and daemons
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Eric MacDonald |
Bug Description
Maintenance start scripts, daemons and config file permissions need to be restricted.
mtce config files 644 -> 600
mtce daemon start/stop scripts 755 -> 700
mtce daemons 755 -> 700
Severity: Minor
Reproducibility: 100% reproducible
Steps to Reproduce
------------------
N/A
Expected Behavior
------------------
mtce init scripts, daemons and config files readable and for scripts and daemons executable as root only.
Actual Behavior
----------------
Mtce config files can be read by group and world and although the daemon startup will fail unless root, the start scripts and daemons themselves can be run with group and world permission.
System Configuration
-------
Any
Branch/Pull Time/Commit
-------
master
Last Pass
---------
Not tested.
Timestamp/Logs
--------------
N/A
Test Activity
-------------
Integration Testing
Workaround
----------
N/A
Changed in starlingx: | |
assignee: | nobody → Eric MacDonald (rocksolidmtce) |
Changed in starlingx: | |
status: | Fix Released → In Progress |
security concern / medium priority - should be fixed in stx.5.0