Application docker-compose.yml file has by default read access for public

Description

Install any application like PGAdmin for example.
Run
```
ls -la /mnt/.ix-apps/app_configs/pgadmin/versions/1.1.11/templates/rendered/docker-compose.yaml
```
As result you will see `rw-rr- 1 root root` so read permission set for docker-compose.yaml file to all users.
Just worth to mention that in docker-compose.yaml file usually in nextcloud for example are stored passwords and usernames grinning face with big eyes

NEXTCLOUD_ADMIN_PASSWORD
NEXTCLOUD_ADMIN_USER

So anyone willing to read from that is allowed to read your passwords winking face
Don't thank you!

Session ID: cafca935-f8fe-10b5-ceb3-1994c5d5d33a

Problem/Justification

None

Impact

None

Activity

Show:

Bug Clerk 2 days ago

This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.

Bug Clerk 2 days ago

This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.

Bug Clerk 2 days ago

This issue has now been closed. Comments made after this point may not be viewed by the TrueNAS Teams. Please open a new issue if you have found a problem or need to re-engage with the TrueNAS Engineering Teams.

Bug Clerk 3 days ago

Complete
Pinned fields
Click on the next to a field label to start pinning.

Details

Assignee

Reporter

Priority

More fields

Katalon Platform

Created March 3, 2025 at 7:57 PM
Updated 2 days ago
Resolved 2 days ago