Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security fix: only allow the user to access the credentials file #28

Merged
merged 3 commits into from May 11, 2012

Conversation

@joeyates
Copy link
Contributor

joeyates commented May 10, 2012

Previously, the oauth token was being saved in a file with world readable (0644) permissions.

@ghost ghost assigned gaubert May 10, 2012
@gaubert
Copy link
Owner

gaubert commented May 10, 2012

This is a valid change. I will pull the merge, test it and do the same when storing the encryption secret

gaubert added a commit that referenced this pull request May 11, 2012
Security fix: only allow the user to access the credentials file
@gaubert gaubert merged commit 754e1c6 into gaubert:master May 11, 2012
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked issues

Successfully merging this pull request may close these issues.

None yet

2 participants
You can’t perform that action at this time.