Recommended permissions / ownership for config files
ilmix last edited by
What are the recommended permissions / ownership for configuration files in
the only thing that is really relevant to our services is that files in that folder cannot be read. In case of secrets (like files containing passwords or certificate files) it is always the easiest to make these belong to the
kopanouser and deny reading to other users.
jengelh Banned last edited by jengelh
No, you want them to be
u=rw,g=r) so that they can be read, but not accidentally written if there is a program bug or exploit.