Bug #16136: On relays /var/rudder/share files are not executable for group - Rudder - Issue Tracker

Actions

Copy link

Bug #16136

closed

On relays /var/rudder/share files are not executable for group

Added by Félix DALLIDET about 5 years ago. Updated almost 5 years ago.

Status:

Released

Priority:

N/A

Assignee:

Alexis Mousset

Category:

Relay server or API

Target version:

5.0.15

Pull Request:

https://github.com/Normation/rudder-p...

Severity:

UX impact:

User visibility:

Effort required:

Priority:

Name check:

Reviewed

Fix check:

Checked

Regression:

Description

Does not matter for Linux nodes since the agent run as root. For windows nodes, it is apache which does the policy distirbution.
The perms are:

sles-12-64:/var/rudder # ls -l /var/rudder/share
total 0
drwx--S--- 1 root rudder-policy-reader 10  6 nov.  12:35 25af38fb-808a-4173-8df3-439143d78f47

Which prevents the group to execute the files --> i.e. traverse directories.
We should instead chmod 2770 on the files here.

Subtasks 1 (0 open — 1 closed)

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #16136

On relays /var/rudder/share files are not executable for group

Updated by Félix DALLIDET about 5 years ago

Updated by Félix DALLIDET about 5 years ago

Updated by Félix DALLIDET about 5 years ago

Updated by Félix DALLIDET about 5 years ago

Updated by Félix DALLIDET about 5 years ago

Updated by Alexis Mousset about 5 years ago

Updated by Nicolas CHARLES about 5 years ago

Updated by Vincent MEMBRÉ almost 5 years ago

Updated by Benoît PECCATTE over 4 years ago