Permalink
Browse files

Tighten permissions on classfile, resourcefile, lastrunfile, and last…

…runreport.
  • Loading branch information...
pcarlisle committed Jun 26, 2012
1 parent 34b9c0b commit fd44bf5e6d0d360f6a493d663b653c121fa83c3f
Showing with 4 additions and 4 deletions.
  1. +4 −4 lib/puppet/defaults.rb
View
@@ -599,14 +599,14 @@ module Puppet
:client_datadir => {:default => "$vardir/client_data", :mode => "750", :desc => "The directory in which serialized data is stored on the client."},
:classfile => { :default => "$statedir/classes.txt",
:owner => "root",
- :mode => 0644,
+ :mode => 0640,
:desc => "The file in which puppet agent stores a list of the classes
associated with the retrieved configuration. Can be loaded in
the separate `puppet` executable using the `--loadclasses`
option."},
:resourcefile => { :default => "$statedir/resources.txt",
:owner => "root",
- :mode => 0644,
+ :mode => 0640,
:desc => "The file in which puppet agent stores a list of the resources
associated with the retrieved configuration." },
:puppetdlog => { :default => "$logdir/puppetd.log",
@@ -713,11 +713,11 @@ module Puppet
"Whether to send reports after every transaction."
],
:lastrunfile => { :default => "$statedir/last_run_summary.yaml",
- :mode => 0644,
+ :mode => 0640,
:desc => "Where puppet agent stores the last run report summary in yaml format."
},
:lastrunreport => { :default => "$statedir/last_run_report.yaml",
- :mode => 0644,
+ :mode => 0640,
:desc => "Where puppet agent stores the last run report in yaml format."
},
:graph => [false, "Whether to create dot graph files for the different

0 comments on commit fd44bf5

Please sign in to comment.