Cert linker should set chmod 0600 on private keys

Question

aegershman opened this issue 4 years ago · comments

ysqlsh: private key file "/var/vcap/jobs/yb-tserver/config/certs/node.key" has group or world access; permissions should be u=rw (0600) or less

chmod 0600 /var/vcap/jobs/yb-tserver/config/certs/node.key

Aaron Gershman · Answer 1 · Sun Dec 13 2020 03:17:24 GMT+0800 (China Standard Time)

I don't believe this is necessary nor would it actually work to have that chmod set on the private keys.