diff options
author | Timothy Redaelli <tredaelli@redhat.com> | 2017-06-19 16:50:21 +0200 |
---|---|---|
committer | Ben Pfaff <blp@ovn.org> | 2017-07-10 11:25:45 -0700 |
commit | 03736a6726cb1faf2584ad2536625471ab6d17c5 (patch) | |
tree | c5c51cfbd48e54806ef1a976e53df180de6a405f /utilities/ovs-pki.in | |
parent | b34cd6119aa1ce50d910252202e5eaa13b5fce5e (diff) | |
download | openvswitch-03736a6726cb1faf2584ad2536625471ab6d17c5.tar.gz |
make logs not readable by other
The Open vSwitch log directory and files are currently set world readable.
However, since only Open vSwitch users and processes need to access this
directory and these files there is no need to allow the world to access them,
since it can result in the exposure of sensitive information.
Signed-off-by: Timothy Redaelli <tredaelli@redhat.com>
Signed-off-by: Ben Pfaff <blp@ovn.org>
Diffstat (limited to 'utilities/ovs-pki.in')
-rwxr-xr-x | utilities/ovs-pki.in | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/utilities/ovs-pki.in b/utilities/ovs-pki.in index d5ce1dccf..4f6941865 100755 --- a/utilities/ovs-pki.in +++ b/utilities/ovs-pki.in @@ -206,7 +206,7 @@ esac logdir=$(dirname "$log") if test ! -d "$logdir"; then - mkdir -p -m755 "$logdir" 2>/dev/null || true + mkdir -p -m750 "$logdir" 2>/dev/null || true if test ! -d "$logdir"; then echo "$0: log directory $logdir does not exist and cannot be created" >&2 exit 1 |