Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
Root directory permissions too permissive on network boot image #1812
Container Linux Version
Any pxe/network boot environment (vmware, metal, etc).
Root file system top level directory should be 755.
Root filesystems permissions are tmpfs default (open with +t) on the network boot image:
This is (a) a potential security issue, even on ephemeral images and (b) causes sshd to abort running /usr/bin/sss_ssh_authorizedkeys due to the permissions:
Doing a simple
fixes sshd. When creating the tmpfs mount I believe you can specify the top level permissions with the mode flag (eg mode=755)