Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

private key permissions #6

Open
zenhack opened this issue Jan 2, 2017 · 1 comment
Open

private key permissions #6

zenhack opened this issue Jan 2, 2017 · 1 comment

Comments

@zenhack
Copy link
Owner

zenhack commented Jan 2, 2017

Issue by irv
Friday Dec 04, 2015 at 22:27 GMT
Originally opened as kuba/simp_le#29

Hi,

I think the permissions on the private key should be more restrictive by default, they're currently set to world readable and should probably be chmod 600

(I noticed this because opensmtpd considers insecure file perms on the private key a fatal error:
must be at most rwx------)
@zenhack zenhack mentioned this issue Apr 2, 2018
Closed
@zenhack
Copy link
Owner Author

zenhack commented Apr 2, 2018

If we can confirm that all major web servers can read the key even with more restrictive permissions, I'm fine adding a flag e.g. --sensitive-files-mode 660 with a default of 600.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@zenhack