[jboss-jira] [JBoss JIRA] (WFCORE-3930) Possible file permission issues in .properties files

Martin Švehla (JIRA) issues at jboss.org
Thu Jun 14 11:01:00 EDT 2018 

Martin Švehla created WFCORE-3930:
-------------------------------------

             Summary: Possible file permission issues in .properties files
                 Key: WFCORE-3930
                 URL: https://issues.jboss.org/browse/WFCORE-3930
             Project: WildFly Core
          Issue Type: Bug
          Components: Build System
            Reporter: Martin Švehla


With new galleon build system we discovered differences in .properties files permissions. There's probably not one "true" setting, but the permissions should be reviewed to be consistent across versions (that's why I'm setting priority major, unless we decide it's problem for users).

Possible issue here is mgmt-groups.properties and application-roles.properties being readable by world.

Here are the differences between the last couple of major builds. Most important differences (imho) are:
* *.properties under /bin used to be 664, now they are 644
* /appclient/configuration/logging.properties and /domain/configuration/logging.properties used to be 664, now they're 600 in legacy build, 644 in galleon build
* mgmt-groups.properties and application-roles.properties are 644 in galleon build (i.e. readble by world)

{code}
$ find . -type f -name '*.properties' -exec stat --format '%A %a %n' {} \;

-rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/add-user.properties
-rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/jboss-cli-logging.properties
-rw-rw-r-- 664 ./jboss-eap-6.4.20/appclient/configuration/logging.properties
-rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-6.4.20/standalone/configuration/logging.properties
-rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-users.properties
-rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-6.4.20/domain/configuration/logging.properties
-rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-users.properties

-rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/add-user.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/jboss-cli-logging.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/environment.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/logging.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/appclient/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/standalone/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-users.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/default-server-logging.properties
-rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-users.properties

-rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/add-user.properties
-rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/jboss-cli-logging.properties
-rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/appclient/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/standalone/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-users.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-users.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-groups.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-roles.properties
-rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/domain/configuration/logging.properties
-rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-users.properties

-rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
-rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
-rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.properties

-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
-rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
-rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
-rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
-rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
-rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.propertie
{code}

Note: WF build is current master (commit 7027657)



--
This message was sent by Atlassian JIRA
(v7.5.0#75005)

More information about the jboss-jira mailing list