unbound-control-setup more secure on multiuser system.

author Wouter Wijngaards <wouter@nlnetlabs.nl>

Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)

committer Wouter Wijngaards <wouter@nlnetlabs.nl>

Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)
author Wouter Wijngaards <wouter@nlnetlabs.nl>
Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)
committer Wouter Wijngaards <wouter@nlnetlabs.nl>
Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)
diff --git a/doc/Changelog b/doc/Changelog

index 3542626bd1007296467f6e71efb32a47b7be6fdd..44728558912e45be944b632433e503bc4b4072fd 100644 (file)
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -6,6 +6,7 @@
         - parentside names are dispreferred but not said to be dnssec-lame.
         - parentside check for cached newname glue.
         - fix parentside and querytargets modulestate, for dump_requestlist.
+       - unbound-control-setup makes keys -rw-r--- so not all users permitted.
  
  28 May 2010: Wouter
         - iana portlist updated.
diff --git a/doc/unbound-control.8.in b/doc/unbound-control.8.in

index da2964aeb388a265429c786384baf2fcbf15f0f7..5c6cb2c1bd1599814e3778900ffbe4ff6e06c98f 100644 (file)
--- a/doc/unbound-control.8.in
+++ b/doc/unbound-control.8.in
@@ -194,8 +194,10 @@ The unbound\-control program exits with status code 1 on error, 0 on success.
  The setup requires a self\-signed certificate and private keys for both 
  the server and client.  The script \fIunbound\-control\-setup\fR generates
  these in the default run directory, or with \-d in another directory.
+If you change the access control permissions on the key files you can decide
+who can use unbound\-control, by default owner and group but not all users.
  Run the script under the same username as you have configured in unbound.conf
-so that the daemon is permitted to read the files, for example with:
+or as root, so that the daemon is permitted to read the files, for example with:
  .nf
      sudo \-u unbound unbound\-control\-setup
  .fi
diff --git a/smallapp/unbound-control-setup.sh b/smallapp/unbound-control-setup.sh

index 1057124ce359d8b07f5e23b0c3959dc2fe8160ef..ed78250aa7695627005cc85cc5cfeb4ae503c700 100755 (executable)
--- a/smallapp/unbound-control-setup.sh
+++ b/smallapp/unbound-control-setup.sh
@@ -57,6 +57,9 @@ SVR_BASE=unbound_server
  # base name for unbound-control keys
  CTL_BASE=unbound_control
  
+# we want -rw-r--- access (say you run this as root: grp=yes (server), all=no).
+umask 0026
+
  # end of options
  
  # functions:
author	Wouter Wijngaards <wouter@nlnetlabs.nl>
	Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)
committer	Wouter Wijngaards <wouter@nlnetlabs.nl>
	Mon, 31 May 2010 14:11:51 +0000 (14:11 +0000)
doc/Changelog		patch \| blob \| blame \| history
doc/unbound-control.8.in		patch \| blob \| blame \| history
smallapp/unbound-control-setup.sh		patch \| blob \| blame \| history