Bug #9841: Bootstrap log contains validation.pem - Chef - Foreman

Actions

Copy link

Bug #9841

closed

Bootstrap log contains validation.pem

Added by Marek Hulán about 9 years ago. Updated almost 9 years ago.

Status:

Rejected

Priority:

Normal

Assignee:

Marek Hulán

Category:

foreman_chef

Target version:

Difficulty:

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

We keep /tmp/bootstrap-* file with log of finish provisioning template which may contain validation.pem (a private key for the node). Unfortunately, it's world readable.

History
Notes
Property changes

Actions

Copy link

Updated by Marek Hulán almost 9 years ago

Status changed from New to Rejected
Assignee set to Marek Hulán

It's only in script file itself which can be read only by root. 0701 mode is being set since 1.3 (when ssh orchestration was introduced).

Actions

Copy link

Updated by Marek Hulán almost 9 years ago

Private changed from Yes to No

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Plugins » Chef

Custom queries

Bug #9841

Bootstrap log contains validation.pem

Updated by Marek Hulán almost 9 years ago

Updated by Marek Hulán almost 9 years ago