(#15471) Ensure non-root can read report summary
7c7cffe76033Unpublished
Actions

Unpublished Commit · Learn More

Repository Importing: This repository is still importing.

Description

(#15471) Ensure non-root can read report summary

The security fix for locking down the last_run_report, which contains
sensitive information, also locked down the last_run_summary, which does
not contain sensitive information. Unfortunately this file is often used
by monitoring systems so that they can track puppet runs. Since the
agent runs as root and the monitoring systems do not, this caused the
summary to become unreadable by the monitoring systems.

This commit returns the summary to being world readable which undoes
part of the change done in fd44bf5e6d0d360f6a493d663b653c121fa83c3f

Details

Provenance

Andrew Parker <andy@puppetlabs.com>	Authored on
vanmeeuwen	Pushed on Jun 2 2015, 2:22 PM

Parents

rPUa257105acb4b: Use Win32 API atomic replace in `replace_file`

Branches

Unknown

Tags

Unknown

Event Timeline

Andrew Parker <andy@puppetlabs.com> committed rPU7c7cffe76033: (#15471) Ensure non-root can read report summary (authored by Andrew Parker <andy@puppetlabs.com>).Aug 3 2012, 1:02 AM

Changes (1)

Path

Size

lib/

puppet/

defaults.rb

rPU7c7cffe76033

View Options

(#15471) Ensure non-root can read report summary7c7cffe76033UnpublishedActions