Security fix: only allow the user to access the credentials file #28

Merged
merged 3 commits into from May 11, 2012

Conversation

Projects
None yet
2 participants
@joeyates
Contributor

joeyates commented May 10, 2012

Previously, the oauth token was being saved in a file with world readable (0644) permissions.

@ghost ghost assigned gaubert May 10, 2012

@gaubert

This comment has been minimized.

Show comment
Hide comment
@gaubert

gaubert May 10, 2012

Owner

This is a valid change. I will pull the merge, test it and do the same when storing the encryption secret

Owner

gaubert commented May 10, 2012

This is a valid change. I will pull the merge, test it and do the same when storing the encryption secret

gaubert added a commit that referenced this pull request May 11, 2012

Merge pull request #28 from joeyates/master
Security fix: only allow the user to access the credentials file

@gaubert gaubert merged commit 754e1c6 into gaubert:master May 11, 2012

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment