Commercial Support Clients: Clients with support contracts can get escalated support assistance by visiting Nagios Answer Hub. These forums are for community support services. Although we at Nagios try our best to help out on the forums here, we always give priority support to our support clients.

Re: [Nagios-devel] Security issues with nagios config file permissions

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.

Re: [Nagios-devel] Security issues with nagios config file permissions

Postby Guest » Tue Jul 09, 2002 3:38 pm

Wouldn't this be better handled by simply storing the community
string and other sensitive stuff in the resource.cfg file? The
permissions can be more restrictive on that file, as the CGIs don't
attempt to read it (default is 660).

On 8 Jul 2002 at 15:24, Mike McHenry wrote:

> Is there any way we can tighten the file permissions on the
> configuration files? Certain plugins require you to list things like
> SNMP community strings which are somewhat sensitive. Personally, I
> set my /etc/nagios permissions as follows=A6
> /etc/nagios nagios:apache 0750
> /etc/nagios/* nagios:apache 0640
> I believe the default permissions are 0755 root:root and 0644
> root:root
> Mike McHenry

Ethan Galstad,
Nagios Developer
Email: nagios@nagios.org
Website: http://www.nagios.org

This post was automatically imported from historical nagios-devel mailing list archives
Original poster: nagios@nagios.org

Return to Open Source Nagios Projects

Who is online

Users browsing this forum: No registered users and 25 guests