Revision - 23ffa4f - setgid on /etc/elasticearch on package install

Revision 23ffa4fdc2e2a6653171ba7c0fa96ff06bc8ca2c authored by Jason Tedor on 29 August 2017, 00:47:42 UTC, committed by Jason Tedor on 29 August 2017, 00:49:49 UTC

setgid on /etc/elasticearch on package install

When creating the keystore explicitly (from executing
elasticsearch-keystore create) or implicitly (for plugins that require
the keystore to be created on install) on an Elasticsearch package
installation, we are running as the root user. This leaves
/etc/elasticsearch/elasticsearch.keystore having the wrong ownership
(root:root) so that the elasticsearch user can not read the keystore on
startup. This commit adds setgid to /etc/elasticsearch on package
installation so that when executing this directory (as we would when
creating the keystore), we will end up with the correct ownership
(root:elasticsearch). Additionally, we set the permissions on the
keystore to be 660 so that the elasticsearch user via its group can read
this file on startup.

Relates #26412

1 parent d6a7e25

Files
Changes

Permalinks

File	Mode	Size
benchmark
client-benchmark-noop-api-plugin
rest
rest-high-level
sniffer
test
transport

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...