[Nagios-devel] Security issues with nagios config file permissions

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Locked
Guest

[Nagios-devel] Security issues with nagios config file permissions

Post by Guest »

This is a multi-part message in MIME format.

------_=_NextPart_001_01C226BD.6C805FC8
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Is there any way we can tighten the file permissions on the
configuration files? Certain plugins require you to list things like
SNMP community strings which are somewhat sensitive. Personally, I set
my /etc/nagios permissions as follows...

=20

/etc/nagios nagios:apache 0750

/etc/nagios/* nagios:apache 0640

=20

I believe the default permissions are 0755 root:root and 0644 root:root

=20

Mike McHenry


------_=_NextPart_001_01C226BD.6C805FC8
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable





















Is there any way we can tighten the file permissions =
on the
configuration files? Certain plugins require you to list things like =
SNMP
community strings which are somewhat sensitive. Personally, I set my =
/etc/nagios
permissions as follows…

 

/etc/nagios        =
nagios:apache   0750

/etc/nagios/*      =
nagios:apache   0640

 

I believe the default permissions are 0755 root:root =
and
0644 root:root

 

Mike McHenry







------_=_NextPart_001_01C226BD.6C805FC8--





This post was automatically imported from historical nagios-devel mailing list archives
Original poster: mmchenry@origix.net
Top
Locked

Return to “Open Source Nagios Projects”