systemd service permissions #98

ludusregio · 2017-06-28T15:17:54Z

My logs are full of following messages:

Jun 28 14:51:59 servername systemd: Configuration file /etc/systemd/system/splunk.service is marked executable. Please remove executable permission bits. Proceeding anyway.
Jun 28 14:51:59 servername systemd: Configuration file /etc/systemd/system/splunk.service is marked world-inaccessible. This has no effect as configuration data is accessible via APIs without restrictions. Proceeding anyway.

This is due to the file /etc/systemd/system/splunk.service having the execute bit set for the owner and not read to world. Can this be corrected in the following code? Instead of mode 700, mode 644?

 template '/etc/systemd/system/splunk.service' do
    source 'splunk-systemd.erb'
    mode '700'
    variables(
      splunkdir: splunk_dir,
      runasroot: node['splunk']['server']['runasroot']
    )
  end

The text was updated successfully, but these errors were encountered:

tas50 · 2017-09-09T03:26:57Z

I’m adding the Type: Jump In GitHub label to this issue. This is a great issue for someone to get their feet wet with and we’d love a PR to resolves the issue.

tas50 · 2017-11-07T01:09:23Z

Fixed and soon to be released

tas50 added the Type: Jump In label Sep 9, 2017

k4ved mentioned this issue Oct 20, 2017

set unit file to 644 #102

Merged

4 tasks

tas50 closed this as completed Nov 7, 2017

tas50 added Help: Good First Issue and removed Type: Jump In labels Jan 4, 2019

tas50 added Status: Good First Issue and removed Help: Good First Issue labels Jan 29, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

systemd service permissions #98

systemd service permissions #98

ludusregio commented Jun 28, 2017

tas50 commented Sep 9, 2017

tas50 commented Nov 7, 2017

systemd service permissions #98

systemd service permissions #98

Comments

ludusregio commented Jun 28, 2017

tas50 commented Sep 9, 2017

tas50 commented Nov 7, 2017