[Bug 1588391] Re: ceilometer charm creates world-readable /etc/ceilometer/ceilometer.conf, exposing credentials
Launchpad Bug Tracker
1588391 at bugs.launchpad.net
Thu Mar 16 15:52:04 UTC 2017
This bug was fixed in the package ceilometer - 1:8.0.1-0ubuntu2
---------------
ceilometer (1:8.0.1-0ubuntu2) zesty; urgency=medium
* d/ceilometer-commmon.postinst: Set permissions to 0640 for
/etc/ceilometer/ceilometer.conf (LP: #1588391).
-- Corey Bryant <corey.bryant at canonical.com> Thu, 16 Mar 2017 10:19:40
-0400
** Changed in: ceilometer (Ubuntu)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to ceilometer in Ubuntu.
https://bugs.launchpad.net/bugs/1588391
Title:
ceilometer charm creates world-readable
/etc/ceilometer/ceilometer.conf, exposing credentials
Status in OpenStack ceilometer charm:
Invalid
Status in Ubuntu Cloud Archive:
Fix Committed
Status in ceilometer package in Ubuntu:
Fix Released
Status in ceilometer package in Juju Charms Collection:
Invalid
Bug description:
On a newly-installed system using ceilometer from the charm store,
/etc/ceilometer/ceilometer.conf is world-readable, despite holding a
number of important credentials:
ubuntu at juju-machine-131-lxc-2:/etc/ceilometer$ ls -la /etc/ceilometer/ceilometer.conf
-rw-r--r-- 1 ceilometer ceilometer 1140 Jun 2 14:12 /etc/ceilometer/ceilometer.conf
Permissions should be changed to 0640 at a maximum.
To manage notifications about this bug go to:
https://bugs.launchpad.net/charm-ceilometer/+bug/1588391/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list