]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9df18e4) | patch
homed: explicitly set access mode of private/public signing key pair
authorLennart Poettering <lennart@poettering.net>
Thu, 20 Feb 2025 08:57:47 +0000 (09:57 +0100)
committerLennart Poettering <lennart@poettering.net>
Thu, 20 Feb 2025 16:35:12 +0000 (17:35 +0100)
commitcfeeaebafe4ed36ec892cb48462e487ae9a361e1
treedb310dd446ac8ceb31bf484b2639617f015493b2tree | snapshot
parent9df18e4bee8ad4034a6fd278c1027005199b91c5commit | diff
homed: explicitly set access mode of private/public signing key pair

So far we relied that the temporary file logic would create the key
files with 0600 mode, but let's set the access mode explicitly:

1. Tighten private key file access from 0600 to 0400, after all we never
   want to write it again, it's not a mutable file.

2. Relaxed public key file access mode from 0600 to 0444, after all it's
   a public key file, and people should be able to see it if they want
   This is useful for propagating the key onto other systems if needed.
src/home/homed-manager.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.