summaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorAchilleas Pipinellis <axilleas@axilleas.me>2016-02-09 11:19:25 +0200
committerAchilleas Pipinellis <axilleas@axilleas.me>2016-02-09 11:35:19 +0200
commit751ae140813e45e3a48b0e3ed7ab08c5461c5e51 (patch)
tree370778d5aa85a75ee7f94035c446bbb0b5deac98 /doc
parent555b1a621a9a73e8cdead9888375a43a8e59f639 (diff)
downloadgitlab-ce-751ae140813e45e3a48b0e3ed7ab08c5461c5e51.tar.gz
Restrict permissions on public/uploads
Diffstat (limited to 'doc')
-rw-r--r--doc/install/installation.md7
1 files changed, 4 insertions, 3 deletions
diff --git a/doc/install/installation.md b/doc/install/installation.md
index 3eb9b1767c5..0e569d34772 100644
--- a/doc/install/installation.md
+++ b/doc/install/installation.md
@@ -268,10 +268,11 @@ sudo usermod -aG redis git
sudo chmod -R u+rwX tmp/sockets/
# Create the public/uploads/ directory
- sudo -u git -H mkdir public/uploads/
+ sudo -u git -H mkdir -m 0700 public/uploads/
- # Make sure GitLab can write to the public/uploads/ directory
- sudo chmod -R u+rwX public/uploads
+ # Make sure only the GitLab user has access to the public/uploads/ directory
+ # now that files in public/uploads are served by gitlab-workhorse
+ sudo chmod -R go-rwX public/uploads
# Change the permissions of the directory where CI build traces are stored
sudo chmod -R u+rwX builds/