[jboss-jira] [JBoss JIRA] (WFCORE-3930) Possible file permission issues in .properties files

Brian Stansberry (JIRA) issues at jboss.org
Sat Jun 16 05:52:00 EDT 2018 

     [ https://issues.jboss.org/browse/WFCORE-3930?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Brian Stansberry reassigned WFCORE-3930:
----------------------------------------

    Assignee: Alexey Loubyansky


> Possible file permission issues in .properties files
> ----------------------------------------------------
>
>                 Key: WFCORE-3930
>                 URL: https://issues.jboss.org/browse/WFCORE-3930
>             Project: WildFly Core
>          Issue Type: Bug
>          Components: Build System
>            Reporter: Martin Švehla
>            Assignee: Alexey Loubyansky
>
> With new galleon build system we discovered differences in .properties files permissions. There's probably not one "true" setting, but the permissions should be reviewed to be consistent across versions (that's why I'm setting priority major, unless we decide it's problem for users).
> Possible issue here is mgmt-groups.properties and application-roles.properties being readable by world.
> Here are the differences between the last couple of major builds. Most important differences (imho) are:
> * *.properties under /bin used to be 664, now they are 644
> * /appclient/configuration/logging.properties and /domain/configuration/logging.properties used to be 664, now they're 600 in legacy build, 644 in galleon build
> * mgmt-groups.properties and application-roles.properties are 644 in galleon build (i.e. readble by world)
> {code}
> $ find . -type f -name '*.properties' -exec stat --format '%A %a %n' {} \;
> -rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/add-user.properties
> -rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/jboss-cli-logging.properties
> -rw-rw-r-- 664 ./jboss-eap-6.4.20/appclient/configuration/logging.properties
> -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-6.4.20/standalone/configuration/logging.properties
> -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-users.properties
> -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-6.4.20/domain/configuration/logging.properties
> -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-users.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/add-user.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/jboss-cli-logging.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/environment.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/logging.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/appclient/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/standalone/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-users.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/default-server-logging.properties
> -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-users.properties
> -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/add-user.properties
> -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/jboss-cli-logging.properties
> -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/appclient/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/standalone/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-users.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-users.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-groups.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-roles.properties
> -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/domain/configuration/logging.properties
> -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-users.properties
> -rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
> -rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
> -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
> -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
> -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
> -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
> -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
> -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.propertie
> {code}
> Note: WF build is current master (commit 7027657)



--
This message was sent by Atlassian JIRA
(v7.5.0#75005)

More information about the jboss-jira mailing list