Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

/etc/xcat/cfgloc stores postgres password in plain text #7448

Open
abhishek-sa1 opened this issue Jun 20, 2024 · 2 comments
Open

/etc/xcat/cfgloc stores postgres password in plain text #7448

abhishek-sa1 opened this issue Jun 20, 2024 · 2 comments

Comments

@abhishek-sa1
Copy link

/etc/xcat/cfgloc stores postgres password in plain text. Can we encrypt this?

@samveen
@samveen samveen mentioned this issue Jun 26, 2024
Open
@Obihoernchen
Copy link
Member

No I don't think so.
It's similar to a passwordless private SSH key or /etc/slurm/slurmdbd.conf.
You need it unencrypted to use it. You need to make sure it's only readable by root though.
@samveen
Copy link
Member

samveen commented Jul 13, 2024

@abhishek-sa1 As mentioned by @Obihoernchen to ensure some level of access security, run the following:

$ sudo chown root:root /etc/xcat/cfgloc
$ sudo chmod 0400 /etc/xcat/cfgloc
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
3 participants
@Obihoernchen @samveen @abhishek-sa1