StackExchange/dnscontrol
1
1
Fork 0
mirror of https://github.com/StackExchange/dnscontrol.git synced 2025-09-12 16:14:42 +08:00
Code Issues Projects Releases Packages Wiki Activity

'get-certs' permissions too open (#745)

Browse source 
Fixes https://github.com/StackExchange/dnscontrol/issues/728
This commit is contained in:
Tom Limoncelli 2020-05-22 10:26:22 -04:00 committed by GitHub
parent 524f346943
commit 87607da685
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
pkg/acme/directoryStorage.go
View file

@ -34,8 +34,7 @@ func (d directoryStorage) accountKeyFile(acmeHost string) string {
return filepath.Join(d.accountDirectory(acmeHost), "account.key")
}
// TODO: probably lock these down more
const perms os.FileMode = 0644
const perms os.FileMode = 0600
const dirPerms os.FileMode = 0700
func (d directoryStorage) GetCertificate(name string) (*certificate.Resource, error) {