Application docker-compose.yml file has by default read access for public
Description
Problem/Justification
None
Impact
None
Activity
Show:
Bug Clerk 2 days ago
This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.
Bug Clerk 2 days ago
This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.
Bug Clerk 2 days ago
This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.
Bug Clerk 3 days ago
25.04.0 PR: https://github.com/truenas/middleware/pull/15973
Bug Clerk 3 days ago
Complete
Pinned fields
Click on the next to a field label to start pinning.
Details
Details
Assignee
Waqar Ahmed
Waqar AhmedReporter
Damian Szczepanski
Damian SzczepanskiAffects versions
Priority
More fields
Time tracking
More fields
Time trackingKatalon Platform
Linked Test Cases, Katalon Defect Results, Katalon Studio Test Results
Katalon Platform
Linked Test Cases, Katalon Defect Results, Katalon Studio Test Results
Created March 3, 2025 at 7:57 PM
Updated 2 days ago
Resolved 2 days ago
Install any application like PGAdmin for example.
Run
```
ls -la /mnt/.ix-apps/app_configs/pgadmin/versions/1.1.11/templates/rendered/docker-compose.yaml
```
As result you will see `rw-rr- 1 root root` so read permission set for docker-compose.yaml file to all users.
Just worth to mention that in docker-compose.yaml file usually in nextcloud for example are stored passwords and usernames
NEXTCLOUD_ADMIN_PASSWORD
NEXTCLOUD_ADMIN_USER
So anyone willing to read from that is allowed to read your passwords
Don't thank you!
Session ID: cafca935-f8fe-10b5-ceb3-1994c5d5d33a