Secure the validation key as well.

author: Tollef Fog Heen <tfheen@err.no> 2010-02-24 09:45:10 +0100
committer: Tollef Fog Heen <tfheen@err.no> 2010-02-24 09:45:10 +0100
commit: 255273cf4d4fc5b5ea1e58aeef84c205ee1ed3b1 (patch)
tree: 417ecb21f870e6479ca020605e71133c1405ab40
parent: c7e7388eb8933c0cd7a9e0daf2c445bb72df7542 (diff)
download: chef-255273cf4d4fc5b5ea1e58aeef84c205ee1ed3b1.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/chef/lib/chef/certificate.rb b/chef/lib/chef/certificate.rb
index 8338650ced..1b32c2a59d 100644
--- a/chef/lib/chef/certificate.rb
+++ b/chef/lib/chef/certificate.rb
@@ -143,7 +143,7 @@ class Chef
           api_client.cdb_save
           key_dir = File.dirname(key_file)
           FileUtils.mkdir_p(key_dir) unless File.directory?(key_dir)
-          File.open(key_file, "w") do |f|
+          File.open(key_file, File::WRONLY|File::EXCL|File::CREAT, 0600) do |f|
             f.print(api_client.private_key)
           end
         end
author	Tollef Fog Heen <tfheen@err.no>	2010-02-24 09:45:10 +0100
committer	Tollef Fog Heen <tfheen@err.no>	2010-02-24 09:45:10 +0100
commit	255273cf4d4fc5b5ea1e58aeef84c205ee1ed3b1 (patch)
tree	417ecb21f870e6479ca020605e71133c1405ab40
parent	c7e7388eb8933c0cd7a9e0daf2c445bb72df7542 (diff)
download	chef-255273cf4d4fc5b5ea1e58aeef84c205ee1ed3b1.tar.gz