DEV: Ensure secure file permissions by default #627
Conversation
`discourse-setup` will now ensure container definitions are installed with `0600` permissions mode only. `launcher` will now throw a warning when an existing container definition is world-readable. Also clean up leftover `launcher setup` logic which no longer exists. Merge pre-existing logic into `check_prereqs` function.
|
If it's important for containers to be Most people who run If it's not appropriate for |
Doesn't the change in |
|
Oh. Sorry. Perhaps I missed that too. But I just did a If you want to /ensure/ secure file permissions, is there a reason not to change them instead of complaining about them with a cryptic-to-most-people message about |
|
@gabenp Please take a look at that topic ^ - can we automatically handle permissions issues like that one? 😃 |
It uses the The idea was that any new setup will get configured securely (with restricted permissions) but we will not affect any existing setups, which may or may not rely on file access by other users. |
|
A thousand apologies! If I'm to offer criticism I should at least pay enough attention that I see what's going on. I think that all makes sense. My concern started when someone noticed that warning and because of a whole bunch of other stuff that looks sort-of like warnings he went back to try to understand the rest of the stuff, at least some of which, I think, is spurious. I'm pretty sure that discourse-setup prints out a bunch of stuff that's part of a test, which is confusing (and I wrote it, so I am not blaming anyone else). But I think I should just hush on this one. Thanks very much. |
discourse-setupwill now ensure container definitions areinstalled with
0600permissions mode only.launcherwill now throw a warning when an existing containerdefinition is world-readable.
Also clean up leftover
launcher setuplogic which no longer exists.Merge pre-existing logic into
check_prereqsfunction.