upstream: Set umask when creating hostkeys to prevent excessive

author dtucker@openbsd.org <dtucker@openbsd.org>

Thu, 10 Jun 2021 09:37:59 +0000 (09:37 +0000)

committer Darren Tucker <dtucker@dtucker.net>

Thu, 10 Jun 2021 10:13:09 +0000 (20:13 +1000)
author dtucker@openbsd.org <dtucker@openbsd.org>
Thu, 10 Jun 2021 09:37:59 +0000 (09:37 +0000)
committer Darren Tucker <dtucker@dtucker.net>
Thu, 10 Jun 2021 10:13:09 +0000 (20:13 +1000)
diff --git a/regress/test-exec.sh b/regress/test-exec.sh

index 5b52788e7d0bbd35f30d689fd2c33c7bff9d5bd6..a06976fab810700f8c965d5067d9a18ca88151ad 100644 (file)
--- a/regress/test-exec.sh
+++ b/regress/test-exec.sh
@@ -1,4 +1,4 @@
-#      $OpenBSD: test-exec.sh,v 1.81 2021/06/01 23:56:20 dtucker Exp $
+#      $OpenBSD: test-exec.sh,v 1.82 2021/06/10 09:37:59 dtucker Exp $
  #      Placed in the Public Domain.
  
  #SUDO=sudo
@@ -601,7 +601,7 @@ for t in ${SSH_HOSTKEY_TYPES}; do
         ) >> $OBJ/known_hosts
  
         # use key as host key, too
-       $SUDO cp $OBJ/$t $OBJ/host.$t
+       (umask 077; $SUDO cp $OBJ/$t $OBJ/host.$t)
         echo HostKey $OBJ/host.$t >> $OBJ/sshd_config
  
         # don't use SUDO for proxy connect
author	dtucker@openbsd.org <dtucker@openbsd.org>
	Thu, 10 Jun 2021 09:37:59 +0000 (09:37 +0000)
committer	Darren Tucker <dtucker@dtucker.net>
	Thu, 10 Jun 2021 10:13:09 +0000 (20:13 +1000)