diff --git a/apps/common/utils/logger.py b/apps/common/utils/logger.py index aae000c1d..edb47ed6a 100644 --- a/apps/common/utils/logger.py +++ b/apps/common/utils/logger.py @@ -25,5 +25,5 @@ class DailyTimedRotatingFileHandler(TimedRotatingFileHandler): os.path.basename(source) ] filename = os.path.join(*path) - os.makedirs(os.path.dirname(filename), exist_ok=True) + os.makedirs(os.path.dirname(filename), 0o700, exist_ok=True) return filename diff --git a/apps/maxkb/settings/logging.py b/apps/maxkb/settings/logging.py index c279e635b..18394191c 100644 --- a/apps/maxkb/settings/logging.py +++ b/apps/maxkb/settings/logging.py @@ -122,4 +122,4 @@ LOGGING = { SYSLOG_ENABLE = CONFIG.SYSLOG_ENABLE if not os.path.isdir(LOG_DIR): - os.makedirs(LOG_DIR, mode=0o755) + os.makedirs(LOG_DIR, mode=0o700, exist_ok=True) diff --git a/installer/start-maxkb.sh b/installer/start-maxkb.sh index 150d2fd4a..c9beef809 100644 --- a/installer/start-maxkb.sh +++ b/installer/start-maxkb.sh @@ -1,7 +1,13 @@ #!/bin/bash -mkdir -p /opt/maxkb/logs -mkdir -p /opt/maxkb/local +if [ ! -d /opt/maxkb/logs ]; then + mkdir -p /opt/maxkb/logs + chmod 700 /opt/maxkb/logs +fi +if [ ! -d /opt/maxkb/local ]; then + mkdir -p /opt/maxkb/local + chmod 700 /opt/maxkb/local +fi mkdir -p /opt/maxkb/python-packages rm -f /opt/maxkb-app/tmp/*.pid diff --git a/installer/start-redis.sh b/installer/start-redis.sh index 2c65a9563..fe0a9dfee 100644 --- a/installer/start-redis.sh +++ b/installer/start-redis.sh @@ -1,11 +1,15 @@ #!/bin/bash -mkdir -p /opt/maxkb/data/redis +if [ ! -d /opt/maxkb/data/redis ]; then + mkdir -p /opt/maxkb/data/redis + chmod 700 /opt/maxkb/data/redis +fi mkdir -p /opt/maxkb/logs if [ ! -f /opt/maxkb/conf/redis.conf ]; then mkdir -p /opt/maxkb/conf touch /opt/maxkb/conf/redis.conf + chmod 700 /opt/maxkb/conf/redis.conf cat < /opt/maxkb/conf/redis.conf bind 0.0.0.0 port 6379