Restrict file permissions before writing key

2025-02-25 18:55:29 -06:00 · 2020-10-07 09:04:01 -06:00 · 2020-10-07 09:04:01 -06:00 · 13e998e87d
commit 13e998e87d
parent bf54f27815
1 changed files with 1 additions and 1 deletions
--- a/tunnel.sh
+++ b/tunnel.sh
@ -20,8 +20,8 @@ tunnelPrivateKey=$(echo "$json" | jq -r '.tunnel_private_key')
 # TODO: It would be nice if we could avoid writing the private key to disk.
 # I tried process substition but it didn't work.
 keyFile=$(mktemp)
-printf -- "$tunnelPrivateKey" > $keyFile
 chmod 0600 $keyFile
+printf -- "$tunnelPrivateKey" > $keyFile

 echo "Connecting to tunnel"