View Issue Details

IDProjectCategoryView StatusLast Update
0010165ContainersGeneralpublic2025-08-01 10:38
ReporterPierre Riteau Assigned To 
PrioritynormalSeverityminorReproducibilityalways
Status newResolutionopen 
Summary0010165: Permissions of /etc in rockylinux/rockylinux:9 container images can be too wide for some services
DescriptionPermissions of directory /etc in rockylinux/rockylinux:9 container images are 775:

drwxrwxr-x. 1 root root 41 Aug 1 10:28 /etc

While on a GenericCloud 9.6 VM image, permissions are 755:

drwxr-xr-x. 90 root root 8192 Aug 1 09:30 /etc

While not generally causing any security issues because the root group generally only includes the root user, it can cause issues with some services if they check the permissions. For example, the MUNGE service [1] fails to start:

munged: Error: Keyfile is insecure: group-writable permissions without sticky bit set on "/etc"

[1] https://dun.github.io/munge
Steps To Reproducesudo podman run --rm -it rockylinux/rockylinux:9 ls -dl /etc
TagsNo tags attached.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2025-08-01 10:38 Pierre Riteau New Issue