Charm Helpers

Overview
Code
Bugs
Blueprints
Translations
Answers

Config saved with default umask

Bug #1329730 reported by Stuart Bishop on 2014-06-13

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Charm Helpers	New	Undecided	Unassigned

Bug Description

The Config.save method serializes the config object to disk, with permissions defaulting to the current umask, potentially exposing any secrets stored in the config to all accounts on the server.

core.host.write_file() can be used to safely write the json to disk, specifying permissons such that only the root user can read it.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.