Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 910772

Summary: incorrect file permissions for /etc/ovirt-engine/notifier/notifier.conf in section "Restoring RHEV-M Configuration Files"
Product: Red Hat Enterprise Virtualization Manager Reporter: Petr Spacek <pspacek>
Component: DocumentationAssignee: Tim Hildred <thildred>
Status: CLOSED CURRENTRELEASE QA Contact: ecs-bugs
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 3.2.0CC: acathrow, dyasny, gklein, yeylon
Target Milestone: ---Keywords: Documentation
Target Release: 3.2.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-06-27 08:59:27 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Petr Spacek 2013-02-13 14:16:45 UTC 
Description of problem:
https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Virtualization/3.1/html/Administration_Guide/Restoring_Red_Hat_Enterprise_Virtualization_Manager_configuration_files.html recommends insecure file permissions in step 9. See below.


Version-Release number of selected component (if applicable):
Public version at 2013-02-13T15:12+0100

 
Actual results:
Step 9. is
# chmod 644 /etc/ovirt-engine/notifier/notifier.conf


Expected results:
Step 9. is
# chmod 640 /etc/ovirt-engine/notifier/notifier.conf


Additional info:
File permission from clean RHEV-M 3.1 installation:
# ls -lZ /etc/ovirt-engine/notifier/notifier.conf
-rw-r-----. ovirt ovirt system_u:object_r:etc_t:s0       /etc/ovirt-engine/notifier/notifier.conf

i.e. 640

This file can potentially contain user name and password, so it has to not be world readable.
Comment 1 Tim Hildred 2013-02-20 04:11:37 UTC 
Updated:

Restoring Red Hat Enterprise Virtualization Manager Configuration Files [7606, rev: 375164]

Changed release to 3.2, because that's what we're working on now. I'll clone it back to 3.1 if we have translation resources to have it re-translated for 3.1. 

Moving to MODIFIED, will change to ON_QA when I stage.