diff options
author | Tomas Babej <tbabej@redhat.com> | 2012-08-06 08:57:14 -0400 |
---|---|---|
committer | Martin Kosek <mkosek@redhat.com> | 2012-08-07 10:18:43 +0200 |
commit | be9614654ee8232323a19ec56e551c4f66e6cc72 (patch) | |
tree | 937b0203fdc0745430c0ac02581ce7d1e3db6853 | |
parent | 36c4778bc66a6435b578268143a2eee766ab9f9c (diff) | |
download | freeipa-be9614654ee8232323a19ec56e551c4f66e6cc72.tar.gz freeipa-be9614654ee8232323a19ec56e551c4f66e6cc72.tar.xz freeipa-be9614654ee8232323a19ec56e551c4f66e6cc72.zip |
Permissions of replica files changed to 0600.
File system permissions on replica files in /var/lib/ipa were
changed to 0600.
https://fedorahosted.org/freeipa/ticket/2847
-rwxr-xr-x | install/tools/ipa-replica-prepare | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/install/tools/ipa-replica-prepare b/install/tools/ipa-replica-prepare index 3b6911288..19360fdf2 100755 --- a/install/tools/ipa-replica-prepare +++ b/install/tools/ipa-replica-prepare @@ -422,7 +422,9 @@ def main(): print "Packaging replica information into %s" % encfile ipautil.run(["/bin/tar", "cf", replicafile, "-C", top_dir, "realm_info"]) - ipautil.encrypt_file(replicafile, encfile, dirman_password, top_dir); + ipautil.encrypt_file(replicafile, encfile, dirman_password, top_dir) + + os.chmod(encfile, 0600) remove_file(replicafile) shutil.rmtree(dir) |