diff options
author | TomZ <tom@flowee.org> | 2022-02-21 22:28:13 +0100 |
---|---|---|
committer | TomZ <tom@flowee.org> | 2022-02-23 10:15:33 +0100 |
commit | 5c6c6f272cdb805c2253a6957a142e6dcaa1fa56 (patch) | |
tree | 0465bacdb225702397048f97ea9541c75e0efaa2 | |
parent | 237645e975dbb6ac4b2b0e4afa1f645465d37393 (diff) | |
download | conduit-5c6c6f272cdb805c2253a6957a142e6dcaa1fa56.zip |
Fix security issue.
The docs state that you need to make the config file _readable_
and then proceeds to make the file writable.
This changes it to make the file to be owned by root and readable by
anyone. This is the default for unix / linux and suggested practice
for files in /etc.
-rw-r--r-- | DEPLOY.md | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -142,7 +142,8 @@ As we are using a Conduit specific user we need to allow it to read the config. Debian: ```bash -sudo chown -R conduit:nogroup /etc/matrix-conduit +sudo chown -R root:root /etc/matrix-conduit +sudo chmod 755 /etc/matrix-conduit ``` If you use the default database path you also need to run this: |