Fix security issue.

The docs state that you need to make the config file _readable_ and then proceeds to make the file writable. This changes it to make the file to be owned by root and readable by anyone. This is the default for unix / linux and suggested practice for files in /etc.
author: TomZ <tom@flowee.org> 2022-02-21 22:28:13 +0100
committer: TomZ <tom@flowee.org> 2022-02-23 10:15:33 +0100
commit: 5c6c6f272cdb805c2253a6957a142e6dcaa1fa56 (patch)
tree: 0465bacdb225702397048f97ea9541c75e0efaa2 /DEPLOY.md
parent: 237645e975dbb6ac4b2b0e4afa1f645465d37393 (diff)
download: conduit-5c6c6f272cdb805c2253a6957a142e6dcaa1fa56.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/DEPLOY.md b/DEPLOY.md
index a28218d..6063482 100644
--- a/DEPLOY.md
+++ b/DEPLOY.md
@@ -142,7 +142,8 @@ As we are using a Conduit specific user we need to allow it to read the config.
 Debian:
 
 ```bash
-sudo chown -R conduit:nogroup /etc/matrix-conduit
+sudo chown -R root:root /etc/matrix-conduit
+sudo chmod 755 /etc/matrix-conduit
 ```
 
 If you use the default database path you also need to run this:
author	TomZ <tom@flowee.org>	2022-02-21 22:28:13 +0100
committer	TomZ <tom@flowee.org>	2022-02-23 10:15:33 +0100
commit	5c6c6f272cdb805c2253a6957a142e6dcaa1fa56 (patch)
tree	0465bacdb225702397048f97ea9541c75e0efaa2 /DEPLOY.md
parent	237645e975dbb6ac4b2b0e4afa1f645465d37393 (diff)
download	conduit-5c6c6f272cdb805c2253a6957a142e6dcaa1fa56.zip