Bug ID | 1191224 |
---|---|
Summary | wireguard-tools: /etc/wireguard permissions should be 700 instead of 755 |
Classification | openSUSE |
Product | openSUSE Tumbleweed |
Version | Current |
Hardware | Other |
OS | Other |
Status | NEW |
Severity | Normal |
Priority | P5 - None |
Component | Other |
Assignee | screening-team-bugs@suse.de |
Reporter | teogramm@outlook.com |
QA Contact | qa-bugs@suse.de |
Found By | --- |
Blocker | --- |
The /etc/wireguard directory created by the wireguard-tools package, has 755 permissions by default. The permissions should be 700 as the directory contains configuration files that include the private keys of a wireguard interface. The upstream makefile sets the permissions to 700, as can be seen here https://git.zx2c4.com/wireguard-tools/tree/src/Makefile (line 99). Tested on: Tumbleweed 20210928, Leap 15.3