N°1114 - config-itop.php access rights enforcement

2026-05-17 06:18:44 +02:00 · 2019-10-22 15:02:51 +02:00
parent 8b37f503c7
commit 3f59141407
2 changed files with 2 additions and 2 deletions
--- a/datamodels/2.x/itop-backup/dbrestore.class.inc.php
+++ b/datamodels/2.x/itop-backup/dbrestore.class.inc.php
@@ -186,7 +186,7 @@ class DBRestore extends DBBackup
 		$sConfigFile = APPROOT.'conf/'.$sEnvironment.'/config-itop.php';
 		@chmod($sConfigFile, 0770); // Allow overwriting the file
 		rename($sDataDir.'/config-itop.php', $sConfigFile);
-		@chmod($sConfigFile, 0444); // Read-only
+		@chmod($sConfigFile, 0440); // Read-only

 		try
 		{
--- a/datamodels/2.x/itop-config/config.php
+++ b/datamodels/2.x/itop-config/config.php
@@ -176,7 +176,7 @@ try
                        $oTempConfig = new Config($sTmpFile, true);
                        $oTempConfig->WriteToFile($sConfigFile);
                        @unlink($sTmpFile);
-                        @chmod($sConfigFile, 0444); // Read-only
+                        @chmod($sConfigFile, 0440); // Read-only

 	                    if (DBPasswordInNewConfigIsOk($sConfig))
 	                    {