cdist security bugfix release

Signed-off-by: Nico Schottelius <nico@brief.schottelius.org>
This commit is contained in:
Nico Schottelius 2012-05-23 16:09:55 +02:00
parent c1d5ae1dc9
commit 530ced208c

View file

@ -0,0 +1,17 @@
[[!meta title="Cdist 2.0.11 released"]]
This is a security bugfix release:
Cdist has so far used whatever umask has been setup on the local and remote
system. This may have lead to
**/var/lib/cdist** being accessable by others,
including data from explorers.
This release fixes this bug and setups a **umask of 077** within cdist.
That means if you are using the **__file** type without the **--mode**
parameter, your files may now have "more secure permissions" than you
would like.
It is recommended to update as soon as possible.
For more information visit the [[cdist homepage|software/cdist]].
[[!tag config unix]]