[Letsencrypt-devel] Bug#845459: certbot: Private keys are stored with world readable
Nikolaus Rath
Nikolaus at rath.org
Wed Nov 23 16:40:49 UTC 2016
Package: certbot
Severity: important
Certbot from jessie-backports stores private keys
(/etc/letsencrypt/archive/*/privkey*.pem) world readable (with 0644
permissions). It seems to me they really ought to be 0600 instead.
-- System Information:
Debian Release: 8.6
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
More information about the Letsencrypt-devel
mailing list