private key permissions #29

irv · 2015-12-04T22:27:53Z

Hi,

I think the permissions on the private key should be more restrictive by default, they're currently set to world readable and should probably be chmod 600

(I noticed this because opensmtpd considers insecure file perms on the private key a fatal error:
must be at most rwx------)

Ensure that key files are not world-readable. temp_umask is based on test.support.temp_umask. Fixes kuba#29

kuba mentioned this issue Dec 5, 2015

PollError traceback #26

Closed

Lekensteyn added a commit to Lekensteyn/simp_le that referenced this issue Dec 5, 2015

Set tight permissions for key files

eb0a7a8

Ensure that key files are not world-readable. temp_umask is based on test.support.temp_umask. Fixes kuba#29

Lekensteyn mentioned this issue Dec 5, 2015

Set tight permissions for key files #34

Open

Lekensteyn added a commit to Lekensteyn/simp_le that referenced this issue Dec 8, 2015

Set tight permissions for key files

d5a2882

Ensure that key files are not world-readable. temp_umask is based on test.support.temp_umask. Fixes kuba#29

Lekensteyn added a commit to Lekensteyn/simp_le that referenced this issue Dec 9, 2015

Set tight permissions for key files

bdb8999

Ensure that key files are not world-readable. temp_umask is based on test.support.temp_umask. Fixes kuba#29

Lekensteyn mentioned this issue Jan 5, 2016

Add design document on file permissions #57

Open

kuba mentioned this issue Mar 24, 2016

key.pem should be 644 to prevent accidents #85

Closed

znz mentioned this issue Apr 4, 2016

private key permissions dokku/dokku-letsencrypt#42

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

private key permissions #29

private key permissions #29

irv commented Dec 4, 2015

private key permissions #29

private key permissions #29

Comments

irv commented Dec 4, 2015