search

ClusterHQ / unofficial-flocker-tools

A tool to make installing Flocker with container orchestration tools easier and more fun
https://clusterhq.com/
11 stars 9 forks source link

agent.yml is uploaded as world-readable #36

Open robhaswell opened 8 years ago

robhaswell commented 8 years ago 
root@ip-10-0-165-235:~# ls -la /etc/flocker/
total 32
drwxr-xr-x  2 root root 4096 Sep 23 10:58 .
drwxr-xr-x 92 root root 4096 Sep 23 10:02 ..
-rw-r--r--  1 root root  262 Sep 23 10:02 agent.yml
-rw-------  1 root root 1948 Sep 23 10:02 cluster.crt
-rw-------  1 root root 1854 Sep 23 10:02 node.crt
-rw-------  1 root root 3268 Sep 23 10:02 node.key
-rw-------  1 root root 1846 Sep 23 10:58 plugin.crt
-rw-------  1 root root 3268 Sep 23 10:58 plugin.key

This contains infrastructure keys, so it's particularly problematic.