Securing tinc config files
Guus Sliepen
guus at tinc-vpn.org
Sun Jan 24 10:32:48 CET 2016
On Sun, Jan 24, 2016 at 12:10:42PM +0300, Yazeed Fataar wrote:
> Can you recommend a good strategy in securely managing the config and hosts
> files please?
The private keys (those files ending in .priv) should only be readable
by root. When tinc generates the public/private keypairs, it already
ensures the private key file is only reabable by root. The rest of the
files in /etc/tinc can be public, there is no harm in having others read
them. But if you don't want others to access them, you should do:
sudo chmod go= /etc/tinc
--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus at tinc-vpn.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://www.tinc-vpn.org/pipermail/tinc/attachments/20160124/1a9d3c5e/attachment.sig>
More information about the tinc
mailing list