Red Hat Bugzilla – Bug 1001482
Backup files of /etc/httpd/conf.d/ssl.conf are created world-writable
Last modified: 2015-09-22 09:09 EDT
Description of problem:
Backup files of /etc/httpd/conf.d/ssl.conf are created world-writable.
Version-Release number of selected component (if applicable):
When an ssl.conf file exists prior to running setup
Steps to Reproduce:
1. Verify that ssl.conf exists (this is the default)
2. Run engine-setup, choose to automatically update apache/httpd conf
There is a world-writable backup file named /etc/httpd/conf.d/ssl.conf.BACKUP.$timestamp
The file should be writable by root only.
This seems to be caused by the function copyFile in common_utils.py to have the default for filemod '-1'.
Closing, as it does not affect RHEV/RHEL. BZ #1011616 is for upstream ovirt 3.2.