Thanks for raising this issue.
This was an explicit change as requested in bug #1862600 see
https://github.com/canonical/netplan/pull/300
It's also not just about Netplan, but I've seen other tools like
NetworkManager, systemd-networkd, openssh logging similar warnings.
The problem is that those files _could_ contain secrets, like private
keys or passwords and there's not currently a way to raise the warning
only for files that contain such confidential information. Longer term,
the Netplan YAML schema needs to tag "secret stanzas" so that the
warning can be shown for relevant files only. But for now it prioritizes
security by rather raising it for all files.
Closing this as an opinion. Feel free to re-open if you have a strong
argument against that.
** Changed in: netplan.io (Ubuntu)
Status: New => Opinion
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2130613
Title:
Netplan: Silence warning if YAML is world readable
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/netplan.io/+bug/2130613/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
