Description of problem:
User story: After manually fixing some SSL certificate files, and leaving /etc/pki/pulp/rsa.key owned by root:root, katello-installer was run to fix potential file permissions and ownership discrepancies. But this file was still owned by root:root while it must be owned by root:apache (otherwise half of pulp requests fail on file access error).
Please update installer such that it sets properly file ownership of /etc/pki/pulp/rsa.key .
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Have installed Sat6
2. chown root:root /etc/pki/pulp/rsa.key
4. ll /etc/pki/pulp/rsa.key
Step 4. shows:
-rw-r-----. 1 root root 1679 May 7 15:40 /etc/pki/pulp/rsa.key
Step 4. to show:
-rw-r-----. 1 root apache 1679 May 7 15:40 /etc/pki/pulp/rsa.key
Not sure what other files can be affected by the same bug.
Created redmine issue http://projects.theforeman.org/issues/16941 from this bug
Verified on the most recent Satellite 6.3.0-10 snap.
My verification steps were:
1. chown root:root /etc/pki/pulp/rsa.key
3. ll /etc/pki/pulp/rsa.key
and the permissions were:
-rw-r----- 1 root apache 1675 Aug 9 13:15 /etc/pki/pulp/rsa.key
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA.
For information on the advisory, and where to find the updated files, follow the link below.
If the solution does not work for you, open a new bug report.