Protect /etc/salt/grains

Make sure that the permissions of /etc/salt/grains only allow access for the
root user.
This commit is contained in:
Jan Dittberner 2016-09-25 17:27:42 +02:00
parent cf6dd52186
commit b90230997c
2 changed files with 8 additions and 0 deletions

View file

@ -30,6 +30,7 @@ pillar_roots:
log_file: file:///dev/log
EOF
umask 077
cat >/etc/salt/grains <<EOF
roles:
# TODO: fill real roles

View file

@ -11,6 +11,13 @@ base-packages:
- git
- locales-all
/etc/salt/grains:
file.managed:
- user: root
- group: root
- mode: 0600
- replace: False
/home/vagrant/.screenrc:
file.managed:
- user: vagrant