[tomcat8] 05/06: Change file permissions for Debian files to 640 in /etc/tomcat8.
Markus Koschany
apo at moszumanska.debian.org
Mon Aug 15 16:12:39 UTC 2016
This is an automated email from the git hooks/post-receive script.
apo pushed a commit to branch jessie
in repository tomcat8.
commit 18e8e339c4ca3c60c8e112bb5e51b6f38c353b4a
Author: Markus Koschany <apo at debian.org>
Date: Fri Aug 12 00:41:15 2016 +0200
Change file permissions for Debian files to 640 in /etc/tomcat8.
---
debian/changelog | 1 +
debian/tomcat8.postinst | 4 ++--
2 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/debian/changelog b/debian/changelog
index cd1e563..0bbec4e 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -5,6 +5,7 @@ tomcat8 (8.0.14-1+deb8u3) jessie-security; urgency=medium
attack and possible root privilege escalation.
* Do not unconditionally overwrite files in /etc/tomcat8 anymore.
(Closes: #825786)
+ * Change file permissions to 640 for Debian files in /etc/tomcat8.
-- Markus Koschany <apo at debian.org> Thu, 11 Aug 2016 22:19:27 +0200
diff --git a/debian/tomcat8.postinst b/debian/tomcat8.postinst
index f55ed3b..20e73c7 100644
--- a/debian/tomcat8.postinst
+++ b/debian/tomcat8.postinst
@@ -52,7 +52,7 @@ case "$1" in
do
if [ -f "/etc/tomcat8/$i" ]; then
chown root:$TOMCAT8_GROUP /etc/tomcat8/$i
- chmod 644 /etc/tomcat8/$i
+ chmod 640 /etc/tomcat8/$i
fi
done
# configuration policy files should not be modifiable by the tomcat8 user. Only
@@ -62,7 +62,7 @@ case "$1" in
do
if [ -f "/etc/tomcat8/policy.d/$i" ]; then
chown root:$TOMCAT8_GROUP /etc/tomcat8/policy.d/$i
- chmod 644 /etc/tomcat8/policy.d/$i
+ chmod 640 /etc/tomcat8/policy.d/$i
fi
done
chown -Rh root:$TOMCAT8_GROUP /etc/tomcat8/Catalina
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-java/tomcat8.git
More information about the pkg-java-commits
mailing list