suricata: Fix ownership and file permissions of files inside /var/lib/suricata.

These files needs to have nobody.nobody as owner but requires read-acces from everyone to allow the suricata user reading-in this files during startup. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2026-04-25 02:12:58 +02:00 · 2019-03-16 13:04:18 +01:00
parent 7bf5b0f221
commit 728f3d2e8f
1 changed files with 6 additions and 2 deletions
--- a/lfs/suricata
+++ b/lfs/suricata
@@ -101,8 +101,12 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
 	# to the rules directory.
 	mv /etc/suricata/*.config /var/lib/suricata

-	# Set correct ownership for /var/lib/suricata
-	chown nobody:nobody /var/lib/suricata
+	# Set correct permissions for the files.
+	chmod 644 /var/lib/suricata/*.config
+
+	# Set correct ownership for /var/lib/suricata and the
+	# contained files
+	chown -R nobody:nobody /var/lib/suricata

 	# Create logging directory.
 	-mkdir -p /var/log/suricata