Hello,
We have the following in our cfengine configuration to copy users'
public keys for cfrun:
copy:
any::
/var/cfengine/masterfiles/ppkeys
server=$(filehost)
dest=/var/cfengine/ppkeys
recurse=1
include=*.pub
mode=444 owner=root group=root
verify=true
With cfengine 2.2.1 and previous, this copies
/var/cfengine/masterfiles/ppkeys/*.pub and sets the permissions
appropriately.
With cfengine 2.2.2, this code also changes permissions on the
destination directory (/var/cfengine/ppkeys) in addition to the *.pub files:
# cfagent -qIK
cfengine:nvitbmmap003: Object /var/cfengine/ppkeys had permission 700,
changed it to 555
# cfagent
::UNTRUSTED: Private key directory /var/cfengine/ppkeys (mode 555) was
not private!
Should the copy be modifying permissions on the destination directory?
Best regards,
Brandon
_______________________________________________
Bug-cfengine mailing list
[email protected]
https://cfengine.org/mailman/listinfo/bug-cfengine
