-
Notifications
You must be signed in to change notification settings - Fork 18
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bad cluster and node state dir permissions #6917
Comments
Test case
|
failure with I try : |
bash +x install.sh ghcr.io/nethserver/core:2.8.0-dev.6
|
Sorry there is a mistake, please repeat the test 😩 In testing 2.8.0-dev.6 |
test case 1 and test case 2 verified with ghcr.io/nethserver/core:2.8.0-dev.6 |
The directory permissions of cluster and node agent are too wide, compared to the state dir of (similar) rootfull modules. For security reasons, the state/ dirs must be not accessible by non-root users.
Steps to reproduce
Always reproducible
Expected behavior
The
state/
dirs of cluster and node agents are not accessible.Actual behavior
The
state/
dirs are world-readable.Components
core 2.7.0
The text was updated successfully, but these errors were encountered: