Uploaded image for project: 'Mender'
  1. Mender
  2. MEN-5357

Default perm 0600 on /var/lib/mender-configure/device-config.json

    XMLWordPrintable

    Details

    • Sprint:
      MEN Sprint 154
    • Story Points:
      1
    • Backlog:
      yes
    • Days in progress:
      0

      Description

      Like title says we should restrict the permissions to this core file by Mender Configure (currently it is world-readable with 0644). The reasons:

      • There might be sensitive info in it, depending on use. It will be with the upcoming Azure IoT integration (device key)
      • Do not think it will create backward-compat issues as the deviceconfig scripts are run as root also

      Acceptance criteria

      • With all (default) installations, /var/lib/mender-configure/device-config.json has permissions 0600

        Attachments

          Activity

            People

            Assignee:
            tranchitella Fabio Tranchitella
            Reporter:
            a10003 Eystein Maloy Stenberg
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Zendesk Support