Pi-hole/pi-hole
Pi-hole/pi-hole
1
0
Fork 0
mirror of https://github.com/pi-hole/pi-hole.git synced 2025-03-04 07:48:34 +00:00
Code Issues Projects Releases Packages Wiki Activity
pi-hole/advanced
History
MichaIng e70981d80f
Do not overwrite TLS cert/key mode 
FTL correctly creates the cert and especially private key with 0600 mode. But the prestart scripts changes it to 0660.

After removing the dedicated webserver from Pi-hole setups, the pihole group has no purpose anymore, and files should not be writable to any other user than pihole itself, and the private TLS key not reasable to anyone else either.

Additionally, this commit consolidates the chmod calls, applying 0755 to all directories and 0640 to all files, but the TLS key and cert.

Signed-off-by: MichaIng <micha@dietpi.com>
2025-02-24 17:29:58 +01:00
..
bash-completion Rename reloaddns-lists to reloadlists per suggestion 2024-10-02 19:39:34 +01:00
Scripts Improve dig error handlin in api.sh 2025-02-22 13:48:55 +01:00
Templates Do not overwrite TLS cert/key mode 2025-02-24 17:29:58 +01:00