summaryrefslogtreecommitdiff
path: root/install-itzks-workstation
diff options
context:
space:
mode:
authorMike Gabriel <mike.gabriel@das-netzwerkteam.de>2018-01-31 00:46:59 +0100
committerMike Gabriel <mike.gabriel@das-netzwerkteam.de>2018-01-31 00:46:59 +0100
commitc72232e8628d6beae53c51fa4cf12f066bbe58ab (patch)
treeace17f5b4c2135215cad6bdadc7c00ffe8dd4ee7 /install-itzks-workstation
parente2d28d78a8ed94e5d41aa07fc980ff7b07df042c (diff)
downloaditzks-install-script-c72232e8628d6beae53c51fa4cf12f066bbe58ab.tar.gz
itzks-install-script-c72232e8628d6beae53c51fa4cf12f066bbe58ab.tar.bz2
itzks-install-script-c72232e8628d6beae53c51fa4cf12f066bbe58ab.zip
Set restrictive permissions for the SSID.in template, not for the real file (to assure that WiFi credentials don't leak to non-root users).
Diffstat (limited to 'install-itzks-workstation')
-rw-r--r--install-itzks-workstation6
1 files changed, 3 insertions, 3 deletions
diff --git a/install-itzks-workstation b/install-itzks-workstation
index 535d88a..b231bf2 100644
--- a/install-itzks-workstation
+++ b/install-itzks-workstation
@@ -124,6 +124,9 @@ never-default=false
method=ignore
EOT
+# Set permissions on generated file
+chmod go-rwx /etc/NetworkManager/system-connections/SSID.in
+
# Generate uuid and timestamp and overwrite in file
UUID=$(uuidgen -t)
@@ -143,9 +146,6 @@ unset passw
# move tweaked template to real configuration file
mv /etc/NetworkManager/system-connections/SSID.in /etc/NetworkManager/system-connections/"$ssid"
-# Set permissions on generated file
-chmod go-rwx /etc/NetworkManager/system-connections/"$ssid"
-
unset ssid
# Write new content for /usr/share/debian-edu-config/tools/wpad-extract.
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-07 01:09:54 +0000