xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2025-02-16 18:49:04 +00:00
Code Issues Projects Releases Wiki Activity

Tighten permissions on confluent config files

Browse Source 
Prior to copying them, make sure only root can interact.
The directory should protect them as well, but best to
not have anything controversial.
This commit is contained in:
Jarrod Johnson 2020-05-19 10:51:32 -04:00
parent 5f63875cae
commit 66f0e8225e
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
confluent_osdeploy/suse15/profiles/hpc/scripts/post.sh
View File

@ -40,6 +40,7 @@ cp /tmp/allnodes /mnt/etc/ssh/shosts.equiv
# carry over deployment configuration and api key for OS install action
mkdir -p /mnt/etc/confluent
chmod 700 /mnt/etc/confluent
chmod 600 /tmp/confluent.*
cp /tmp/confluent.* /mnt/etc/confluent/
cp -a /tls /mnt/etc/confluent/
cp -a /tls/* /mnt/var/lib/ca-certificates/openssl