Bug #16941
closed
installer does not check&fix wrong permissions on /etc/pki/pulp/rsa.key
Description
Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1334400
Description of problem:
User story: After manually fixing some SSL certificate files, and leaving /etc/pki/pulp/rsa.key owned by root:root, katello-installer was run to fix potential file permissions and ownership discrepancies. But this file was still owned by root:root while it must be owned by root:apache (otherwise half of pulp requests fail on file access error).
Please update installer such that it sets properly file ownership of /etc/pki/pulp/rsa.key .
Version-Release number of selected component (if applicable):
katello-installer-2.3.25-1.el7sat.noarch
pulp-server-2.6.0.20-1.el7sat.noarch
How reproducible:
100%
Steps to Reproduce:
1. Have installed Sat6
2. chown root:root /etc/pki/pulp/rsa.key
3. katello-installer
4. ll /etc/pki/pulp/rsa.key
Actual results:
Step 4. shows:
rw-r----. 1 root root 1679 May 7 15:40 /etc/pki/pulp/rsa.key
Expected results:
Step 4. to show:
rw-r----. 1 root apache 1679 May 7 15:40 /etc/pki/pulp/rsa.key
Additional info:
Not sure what other files can be affected by the same bug.
Updated by Justin Sherrill about 8 years ago
- Subject changed from installer does not check&fix wrong permissions on /etc/pki/pulp/rsa.key to installer does not check&fix wrong permissions on /etc/pki/pulp/rsa.key
- Translation missing: en.field_release set to 114
Updated by Chris Roberts almost 8 years ago
- Assignee set to Chris Roberts
- Target version set to 147
- Translation missing: en.field_release changed from 114 to 184
- Difficulty set to easy
Updated by Chris Roberts almost 8 years ago
- Translation missing: en.field_release changed from 184 to 188
Updated by Chris Roberts almost 8 years ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/Katello/puppet-pulp/pull/182 added
Updated by Chris Roberts almost 8 years ago
- Status changed from Ready For Testing to Resolved