Bug 1431485

Summary:	openstack-zaqar: /var/log/zaqar is world readable
Product:	Red Hat OpenStack	Reporter:	Summer Long <slong>
Component:	openstack-zaqar	Assignee:	Thomas Hervé <therve>
Status:	CLOSED ERRATA	QA Contact:	Shai Revivo <srevivo>
Severity:	unspecified	Docs Contact:
Priority:	unspecified
Version:	11.0 (Ocata)	CC:	apevec, dtantsur, eglynn, jruzicka, jschluet, lhh, lmartins, mburns, pkilambi, rbartal, rhel-osp-director-maint, slinaber, srevivo, ssmolyak, therve
Target Milestone:	beta	Keywords:	Security
Target Release:	11.0 (Ocata)
Hardware:	Unspecified
OS:	Unspecified
Whiteboard:
Fixed In Version:	openstack-zaqar-4.0.0-2.el7ost	Doc Type:	If docs needed, set a value
Doc Text:		Story Points:	---
Clone Of:	1431484
Clones:	1431487 (view as bug list)		Environment:
Last Closed:	2017-05-17 20:07:03 UTC	Type:	Bug
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:

Description Summer Long 2017-03-13 01:16:22 UTC

Description of problem:
The directory /var/log/zaqar is world readable and contains log files that are readable, which can result in the exposure of sensitive information. The 'other readable/execute' bits need to be removed from the /var/log/zaqar directory.

Because no sensitive data was found in the files, this is being raised as a hardening bug, and not a flaw.

Version-Release number of selected component (if applicable):
openstack-zaqar-4.0.0-1.el7ost

Comment 2 errata-xmlrpc 2017-05-17 20:07:03 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2017:1245