Fix security issue.

The docs state that you need to make the config file _readable_ and then proceeds to make the file writable. This changes it to make the file to be owned by root and readable by anyone. This is the default for unix / linux and suggested practice for files in /etc.
2 years ago · 5c6c6f272c
parent 237645e975
commit 5c6c6f272c
1 changed files with 2 additions and 1 deletions
--- a/DEPLOY.md
+++ b/DEPLOY.md
@ -142,7 +142,8 @@ As we are using a Conduit specific user we need to allow it to read the config.
 Debian:

 ```bash
-sudo chown -R conduit:nogroup /etc/matrix-conduit
+sudo chown -R root:root /etc/matrix-conduit
+sudo chmod 755 /etc/matrix-conduit
 ```

 If you use the default database path you also need to run this: