Bug 456562
Summary: | Change package permissions to rw-r--r-- | |||
---|---|---|---|---|
Product: | [Community] Spacewalk | Reporter: | Justin Sherrill <jsherril> | |
Component: | Server | Assignee: | Pradeep Kilambi <pkilambi> | |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Red Hat Satellite QA List <satqe-list> | |
Severity: | low | Docs Contact: | ||
Priority: | low | |||
Version: | 0.1 | CC: | bperkins, cperry, dgoodwin | |
Target Milestone: | --- | |||
Target Release: | --- | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | Bug Fix | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 484475 (view as bug list) | Environment: | ||
Last Closed: | 2009-09-17 06:59:38 UTC | Type: | --- | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 456550 |
Description
Justin Sherrill
2008-07-24 17:50:53 UTC
Any other viable options? - Make tomcat user in the apache group *and* then change sat-sync code to write stuff: 0640 apache:apache from 0640 apache:root Does 'root' need this access at group level to the files? Making the files globally readable by change: 0644 is less of a change to do, less risky in code, but does expose the entire /var/satellite/ contents to any normal user on that has ssh access, but is this a problem, most likely not. So, 0644 sounds fine, I think the risk exposure is minimal. Pretty sure this is a one liner to change: satellite_tools/syncLib.py: setPermsPath(self.full_path, user='apache', group='root', chmod=0640) *if* we make a change, we will need as part of upgrade process, a separate bug to track and if needed as part of upgrade change permissions. Cliff fixed and upgrade process already handles this perms update. Verified in spacewalk 0.2. Packages are being stored with 0644. (-rw-r--r--) Remove bug 456562 blocks bug 484475. Spacewalk is released for long time. |