[SOLVED] World-readable permissions on config.xml

ajgringo619 · Post by **ajgringo619** » Sat Jan 15, 2022 5:12 pm

Is it necessary to have world-readable (644) permissions on /etc/foldingathome/config.xml? Curious why this is the default when passwords/keys are stored there.

Post by **calxalot** » Sat Jan 15, 2022 10:47 pm

It can be 0600 if you like.

ajgringo619 · Post by **ajgringo619** » Sat Jan 15, 2022 10:49 pm

calxalot wrote:It can be 0600 if you like.

Thanks; didn't want to mess anything up when it's working so well.

ajgringo619 · Post by **ajgringo619** » Mon Jan 17, 2022 9:18 pm

To make the change permanent, I had to add this to the foldingathome.service file:

Code: Select all

# /etc/systemd/system/foldingathome.service.d/override.conf
[Service]
ExecStartPre=!/usr/bin/chmod 600 /etc/foldingathome/config.xml

Post by **calxalot** » Mon Jan 17, 2022 11:35 pm

You might want to change the umask for user fahclient

ajgringo619 · Post by **ajgringo619** » Tue Jan 18, 2022 12:20 am

calxalot wrote:You might want to change the umask for user fahclient

Not sure how to do this with a dynamic user, but thanks for the suggestion. My chmod command worked, but it went right back to normal after the next WU was started.

Post by **calxalot** » Tue Jan 18, 2022 1:48 am

I think you can add
UMask=0077
in your FAHClient.service

ajgringo619 · Post by **ajgringo619** » Tue Jan 18, 2022 1:59 am

Thank you so much - that did the trick!

Folding Forum

[SOLVED] World-readable permissions on config.xml

[SOLVED] World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml

Re: World-readable permissions on config.xml