Protect /etc/salt/grains
Make sure that the permissions of /etc/salt/grains only allow access for the root user.
This commit is contained in:
parent
cf6dd52186
commit
b90230997c
2 changed files with 8 additions and 0 deletions
|
|
@ -30,6 +30,7 @@ pillar_roots:
|
||||||
log_file: file:///dev/log
|
log_file: file:///dev/log
|
||||||
EOF
|
EOF
|
||||||
|
|
||||||
|
umask 077
|
||||||
cat >/etc/salt/grains <<EOF
|
cat >/etc/salt/grains <<EOF
|
||||||
roles:
|
roles:
|
||||||
# TODO: fill real roles
|
# TODO: fill real roles
|
||||||
|
|
|
||||||
|
|
@ -11,6 +11,13 @@ base-packages:
|
||||||
- git
|
- git
|
||||||
- locales-all
|
- locales-all
|
||||||
|
|
||||||
|
/etc/salt/grains:
|
||||||
|
file.managed:
|
||||||
|
- user: root
|
||||||
|
- group: root
|
||||||
|
- mode: 0600
|
||||||
|
- replace: False
|
||||||
|
|
||||||
/home/vagrant/.screenrc:
|
/home/vagrant/.screenrc:
|
||||||
file.managed:
|
file.managed:
|
||||||
- user: vagrant
|
- user: vagrant
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue