浏览代码

Make sure that only ZNC can read its certificate

To bring this certificate in line with how those in ssl.yml are managed.
Thom Wiggers 10 年前
父节点
当前提交
8578f49e21
共有 1 个文件被更改,包括 1 次插入1 次删除
  1. 1
    1
      roles/ircbouncer/tasks/znc.yml

+ 1
- 1
roles/ircbouncer/tasks/znc.yml 查看文件

@@ -39,7 +39,7 @@
39 39
     /var/lib/znc/znc.pem creates=/var/lib/znc/znc.pem
40 40
 
41 41
 - name: Ensure znc user and group can read cert
42
-  file: path=/var/lib/znc/znc.pem group=znc owner=znc
42
+  file: path=/var/lib/znc/znc.pem group=znc owner=znc mode=640
43 43
 
44 44
 - name: Check for existing config file
45 45
   command: cat /var/lib/znc/configs/znc.conf

正在加载...
取消
保存