Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Permission for filebeat.yml with credentials in it #541

Merged
merged 1 commit into from
Aug 10, 2022

Conversation

poloz-lab
Copy link
Contributor

As the credentials for filebeat are stored in the config file and not the keystore, it should be better to at least hide them from non privileged users.

This PR removes read permission for other users to the filebeat.yml config file.

Fixes #540

@vcerenu vcerenu self-assigned this Aug 9, 2022
Copy link
Member

@vcerenu vcerenu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hello @poloz-lab

Thanks for your patience and contribution. We are working hard to review all the requests as soon as possible. Currently, we are reviewing this PR.

The development of this PR is greatly appreciated, we will be merging it and it will be available in the next Wazuh release.

Thank you very much and if you have any questions or ideas, do not hesitate to contact us.

@okynos okynos merged commit a887f80 into wazuh:4.3 Aug 10, 2022
@poloz-lab poloz-lab deleted the feature-540-permission-filebeat-yml branch August 10, 2022 07:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants