mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-02-25 18:55:28 -06:00
a425448914
File permissions from the rpm freeipa-server-common and freeipa-client-common do not match the runtime permissions. This results in mode failures on rpm -Va. Fix the expected file permissions on rpm spec file for /var/lib/ipa/pki-ca/publish /var/named/dyndb-ldap/ipa /etc/ipa/pwdfile.txt /etc/pki/ca-trust/source/ipa.p11-kit (new format SQLite) /etc/ipa/nssdb/cert9.db /etc/ipa/nssdb/key4.db /etc/ipa/pkcs11.txt (old format DBM) /etc/ipa/cert8.db /etc/ipa/key3.db /etc/ipa/secmod.db The commit also fixes the file permissions for /etc/httpd/conf.d/ipa-pki-proxy.conf (644) during server installation, and the group ownership. Fixes: https://pagure.io/freeipa/issue/7934 Reviewed-By: Rob Crittenden <rcritten@redhat.com> Reviewed-By: Christian Heimes <cheimes@redhat.com>