I can confirm. If you load virsh as a user in the libvirtd group, and define a domain from a user readable xml file, libvirt creates a copy in /etc/libvirt/qemu/ that's mode 600 root/root. The user can no longer read these files.
One could use 'dumpxml domain', copy and paste into a new file, then modify the file, and redefine it to update the configuration. Perhaps these config files should have group access. Also I noticed that when connecting to virsh as a regular user that using 'save' to save a machine's state still creates a root owned mode 0600 output file. -- Permissions of files in /etc/libvirt/qemu are too restrictive https://bugs.launchpad.net/bugs/235386 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
