Uploaded image for project: 'Ambari'
  1. Ambari
  2. AMBARI-25413

Ambari is changing the truststore permission from 444/644 to 640.

    XMLWordPrintableJSON

Details

    Description

      When running ambari-server setup-security and choosing '[1] Enable HTTPS for Ambari server.' we give the following information:
      Do you want to disable HTTPS [y/n] ? n
      SSL port [8080] ? 8080
      Enter path to Certificate: <Certificate File>
      Enter path to Private Key: <Key File>
      Please enter password for Private Key: <empty>
      Generating random password for HTTPS keystore...done.
      Importing and saving Certificate...done.

      Thereafter Unix permission of the systemwide Java truststore
      /var/lib/ca-certificates/java-cacerts are changed from mode 444 to 640.
      In consequence Applications do not start anymore because the truststore is not world readable. It's creating impact on applications which is run by other users.

      Attachments

        Activity

          People

            sziszo Szilárd Antal
            abathla Ashish Bathla
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 50m
                50m