Révision 0b7bcb5d
Align filemode on RedHat to distro default
The RPM acutally ships the configuration and directory with
0600/0700 while this module sets the mode to 0640/0750.
However, this has the drawback that on new nftables RPM versions,
we are setting it back to the modules mode and triggering an nft
validate.
| manifests/config.pp | ||
|---|---|---|
| 19 | 19 |
ensure_newline => true, |
| 20 | 20 |
owner => root, |
| 21 | 21 |
group => root, |
| 22 |
mode => '0640',
|
|
| 22 |
mode => $nftables::default_config_mode,
|
|
| 23 | 23 |
} ~> Exec['nft validate'] -> file {
|
| 24 | 24 |
"/etc/nftables/puppet/${prefix}${name}.nft":
|
| 25 | 25 |
ensure => file, |
| 26 | 26 |
source => "/etc/nftables/puppet-preflight/${prefix}${name}.nft",
|
| 27 | 27 |
owner => root, |
| 28 | 28 |
group => root, |
| 29 |
mode => '0640',
|
|
| 29 |
mode => $nftables::default_config_mode,
|
|
| 30 | 30 |
} ~> Service['nftables'] |
| 31 | 31 |
|
| 32 | 32 |
$data = split($name, '-') |
Formats disponibles : Unified diff