Correctly set permissions on LDAP configuration file to only allow owner / group, since this file contains a multi-master replication password in plain text

(cherry picked from commit 81b65a2d55)
r14.0.x
Timothy Pearson 6 years ago committed by Slávek Banko
parent 8e9965e8ed
commit fac096dec8
No known key found for this signature in database
GPG Key ID: 608F5293A04BE668

@ -2860,6 +2860,11 @@ int LDAPManager::writeLDAPConfFile(LDAPRealmConfig realmcfg, LDAPMachineRole mac
delete systemconfig;
if (chmod(KDE_CONFDIR "/ldap/ldapconfigrc", S_IRUSR|S_IWUSR|S_IRGRP) < 0) {
if (errstr) *errstr = TQString("Unable to change permissions of \"%1\"").arg(KDE_CONFDIR "/ldap/ldapconfigrc");
return -1;
}
return 0;
}

Loading…
Cancel
Save