Red Hat Bugzilla – Bug 1024500
Security hardening for /etc/* before Satellite 6 GA
Last modified: 2014-08-21 09:34:06 EDT
Ned to go through all the files that Satellite 6 installs in:
and ensure they aare not world readable, and have the proper permissions such that the services using them can read them but nothing else can (except root).
many of the files we configure contain username/passwords as well as oauth tokens and keys and we don't want non-root users able to read these.
Since this issue was entered in Red Hat Bugzilla, the release flag has been
set to ? to ensure that it is properly evaluated for this release.
Will utilize formal security review process for this bug and file individual bugs.