Public bug reported: The OpenStack Security Guide [1] suggests that the listed files should have permissions of 640 (or tighter), below are files delivered via the package that differ from that recommendation:
- /etc/keystone/keystone.conf - /etc/keystone/keystone-paste.ini - /etc/keystone/logging.conf [1]: https://docs.openstack.org/security-guide/identity/checklist.html #check-identity-02-are-strict-permissions-set-for-identity- configuration-files This is on a fresh Bionic (Queens) package ** Affects: charm-keystone Importance: Undecided Status: New ** Affects: keystone (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1820992 Title: Package installs files with loose permissions To manage notifications about this bug go to: https://bugs.launchpad.net/charm-keystone/+bug/1820992/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
