User story #8607
closed
Document security level of Rudder content
Added by Alexis Mousset almost 8 years ago.
Updated almost 5 years ago.
Description
- What is accessible from who? From where?
- What is encrypted? When?
- Directive and 50_techniques are private, and always encrypted/root-readable only
- The rudder group can give access to private data
- All the rest (tools, ncf/common, etc.) should be considered "public", and may even be readable from non accepted hosts (ncf)
- Shared files?
- Related to Bug #8503: Files in /var/local/rudder/ncf are world readable added
- Related to Bug #8159: Do not backup modified promise files and encrypt ncf/local transfer added
- Status changed from New to In progress
- Status changed from In progress to Pending technical review
- Assignee changed from Alexis Mousset to Jonathan CLARKE
- Pull Request set to https://github.com/Normation/rudder-doc/pull/202
- Assignee changed from Jonathan CLARKE to François ARMAND
- Status changed from Pending technical review to Pending release
- % Done changed from 0 to 100
- Status changed from Pending release to Released
This bug has been fixed in Rudder 2.11.23, 3.1.12 and 3.2.5 which were released today.
- Private changed from Yes to No
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by