Restrict permissions on FM files
Bug #1887444 reported by
Yuxing
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Yuxing |
Bug Description
Brief Description
-----------------
FM config and log files may contain secure information should have restricted permissions.
Severity
--------
Major
Steps to Reproduce
------------------
Check to permission of /etc/fm/fm.conf and /var/log/
Expected Behavior
------------------
Both files permission should be set to 600
Actual Behavior
----------------
Both files permission are 644
Reproducibility
---------------
100%
System Configuration
-------
All systems
Branch/Pull Time/Commit
-------
As of July 13th, 2020
Last Pass
---------
NA
Timestamp/Logs
--------------
NA
Test Activity
-------------
Developer test
Changed in starlingx: | |
assignee: | nobody → Yuxing (yuxing) |
To post a comment you must log in.
security concern / medium priority - should be fixed in stx.5.0