These files needs to have nobody.nobody as owner but requires read-acces from everyone
to allow the suricata user reading-in this files during startup.
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
# to the rules directory.
mv /etc/suricata/*.config /var/lib/suricata
- # Set correct ownership for /var/lib/suricata
- chown nobody:nobody /var/lib/suricata
+ # Set correct permissions for the files.
+ chmod 644 /var/lib/suricata/*.config
+
+ # Set correct ownership for /var/lib/suricata and the
+ # contained files
+ chown -R nobody:nobody /var/lib/suricata
# Create logging directory.
-mkdir -p /var/log/suricata