Cert linker should set chmod 0600 on private keys
aegershman opened this issue · comments
Aaron Gershman commented
ysqlsh: private key file "/var/vcap/jobs/yb-tserver/config/certs/node.key" has group or world access; permissions should be u=rw (0600) or less
chmod 0600 /var/vcap/jobs/yb-tserver/config/certs/node.key
Aaron Gershman commented
I don't believe this is necessary nor would it actually work to have that chmod set on the private keys.