[MEN-5357] Default perm 0600 on /var/lib/mender-configure/device-config.json - Northern.tech AS

XML

Word

Printable

Details

Type: Task
Status: Done
Priority: (None)
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.2.0, 3.2.0-report, 3.0.2, 3.1.1, 2.6.4
Labels:
- Backend
- Client

Sprint:
MEN Sprint 154
Story Points:
1
Backlog:
yes
Days in progress:
0

Description

Like title says we should restrict the permissions to this core file by Mender Configure (currently it is world-readable with 0644). The reasons:

There might be sensitive info in it, depending on use. It will be with the upcoming Azure IoT integration (device key)
Do not think it will create backward-compat issues as the deviceconfig scripts are run as root also

Acceptance criteria

With all (default) installations, /var/lib/mender-configure/device-config.json has permissions 0600

Attachments

Activity

People

Assignee:: Fabio Tranchitella

Reporter:: Eystein Maloy Stenberg

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 10/Jan/22 7:46 PM

Updated:: 12/Jan/22 10:53 AM

Resolved:: 11/Jan/22 11:17 AM