Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-3930

Possible file permission issues in .properties files

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 6.0.0.Alpha3
    • None
    • Build System
    • None

      With new galleon build system we discovered differences in .properties files permissions. There's probably not one "true" setting, but the permissions should be reviewed to be consistent across versions (that's why I'm setting priority major, unless we decide it's problem for users).

      Possible issue here is mgmt-groups.properties and application-roles.properties being readable by world.

      Here are the differences between the last couple of major builds. Most important differences (imho) are:

      • *.properties under /bin used to be 664, now they are 644
      • /appclient/configuration/logging.properties and /domain/configuration/logging.properties used to be 664, now they're 600 in legacy build, 644 in galleon build
      • mgmt-groups.properties and application-roles.properties are 644 in galleon build (i.e. readble by world)
      $ find . -type f -name '*.properties' -exec stat --format '%A %a %n' {} \;
      
      -rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/add-user.properties
      -rw-rw-r-- 664 ./jboss-eap-6.4.20/bin/jboss-cli-logging.properties
      -rw-rw-r-- 664 ./jboss-eap-6.4.20/appclient/configuration/logging.properties
      -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-6.4.20/standalone/configuration/logging.properties
      -rw------- 600 ./jboss-eap-6.4.20/standalone/configuration/application-users.properties
      -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-6.4.20/domain/configuration/logging.properties
      -rw------- 600 ./jboss-eap-6.4.20/domain/configuration/application-users.properties
      
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/add-user.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/bin/jboss-cli-logging.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/environment.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/migration/configuration/logging.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/appclient/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/standalone/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.1.2/standalone/configuration/application-users.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/default-server-logging.properties
      -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-7.1.2/domain/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.1.2/domain/configuration/application-users.properties
      
      -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/add-user.properties
      -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/bin/jboss-cli-logging.properties
      -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/appclient/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/standalone/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/standalone/configuration/application-users.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-users.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/mgmt-groups.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-roles.properties
      -rw-rw-r-- 664 ./jboss-eap-7.2.0.CD12/domain/configuration/logging.properties
      -rw------- 600 ./jboss-eap-7.2.0.CD12/domain/configuration/application-users.properties
      
      -rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
      -rw-r--r-- 644 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
      -rw------- 600 ./wildfly-legacy-build-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.properties
      
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/add-user.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/bin/jboss-cli-logging.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/appclient/configuration/logging.properties
      -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-users.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/mgmt-groups.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-roles.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/logging.properties
      -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/standalone/configuration/application-users.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/default-server-logging.properties
      -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-users.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/mgmt-groups.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-roles.properties
      -rw-r--r-- 644 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/logging.properties
      -rw------- 600 ./wildfly-14.0.0.Beta1-SNAPSHOT/domain/configuration/application-users.propertie
      

      Note: WF build is current master (commit 7027657)

              olubyans@redhat.com Alexey Loubyansky
              msvehla@redhat.com Martin Svehla
              Martin Svehla Martin Svehla
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: