Red Hat Bugzilla – Bug 558343
Possibly insecure server configuration file permissions
Last modified: 2010-01-25 11:58:40 EST
Description of problem:
Permissions for kdc.conf and kadm.acl are 644 but since they contain somewhat sensitive data (esp. kadm.acl) I wonder wouldn't 600 would be more secure permissions?
You're not really supposed to let non-admins roam around on a KDC, but I don't see a lot of downside to making that change.