tuxpoldo Posted April 3, 2014 Report Share Posted April 3, 2014 A user reported the following problem in Issue #122, and I agree with him: Hi,is it possible to change the permission flags to readable only by the server itself?I classify this as an security issue.Maybe this needs to be addressed to btsync itself. /var/lib/btsync# ll -ninsgesamt 952drwxr-xr-x 2 1000 1000 4096 Apr 3 22:43 ./drwxr-xr-x 73 0 0 4096 Apr 3 22:25 ../...-rw-r--r-- 1 1000 1000 2919 Apr 3 21:58 settings.dat...In my opinion there is no real workaround for this: setting an UMASK that prevents this, affects also the shared folders. Quote Link to comment Share on other sites More sharing options...
RomanZ Posted April 4, 2014 Report Share Posted April 4, 2014 tuxpoldo, Thanks for reporting, we'll consider adjusting it in future versions. As a workaround you can adjust settings.dat and sync.dat file permissions manually. Quote Link to comment Share on other sites More sharing options...
tuxpoldo Posted April 4, 2014 Author Report Share Posted April 4, 2014 OK - I will add in the startup script a workaround that will modify the permissions of all files in the storage_path to 0600 - This unfortunately is only a workaround but it should in any case increase security... Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.