DO NOT REPORT VULNERABILITIES HERE!
Is there an existing issue for this?
What happened?
For CIS compliance reasons, we removed the "w" bit for "others" on the following folders:
/opt/cronicle/queue
/opt/cronicle/logs/jobs
However, after a restart or when some tasks are run, these permissions are apparently reset to be world writable.
Is there any reason for this? Is this a configuration issue on our end? Can it be fixed, maybe in code? We even tried working around this by applying a sticky bit but that gets reset, too.
Operating System
RHEL 9.6
Node.js Version
16.20
Cronicle Version
0.9.80
Server Setup
Single Server
Storage Setup
Local Filesystem
Relevant log output
Code of Conduct
DO NOT REPORT VULNERABILITIES HERE!
Is there an existing issue for this?
What happened?
For CIS compliance reasons, we removed the "w" bit for "others" on the following folders:
/opt/cronicle/queue
/opt/cronicle/logs/jobs
However, after a restart or when some tasks are run, these permissions are apparently reset to be world writable.
Is there any reason for this? Is this a configuration issue on our end? Can it be fixed, maybe in code? We even tried working around this by applying a sticky bit but that gets reset, too.
Operating System
RHEL 9.6
Node.js Version
16.20
Cronicle Version
0.9.80
Server Setup
Single Server
Storage Setup
Local Filesystem
Relevant log output
Code of Conduct