Skip to content

Restrict TLS private key file permissions#179

Merged
valentinewallace merged 1 commit intolightningdevkit:mainfrom
benthecarman:tls-perms
Apr 2, 2026
Merged

Restrict TLS private key file permissions#179
valentinewallace merged 1 commit intolightningdevkit:mainfrom
benthecarman:tls-perms

Conversation

@benthecarman
Copy link
Copy Markdown
Collaborator

@benthecarman benthecarman commented Apr 1, 2026

The generated TLS private key was written with default permissions (typically 0644), making it world-readable. Set permissions to 0400 (owner-read-only) after writing, matching the existing API key file handling.

@benthecarman @claude
Restrict TLS private key file permissions
3189547 
The generated TLS private key was written with default
permissions (typically 0644), making it world-readable.
Set permissions to 0400 (owner-read-only) after writing,
matching the existing API key file handling.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@ldk-reviews-bot
Copy link
Copy Markdown

ldk-reviews-bot commented Apr 1, 2026
edited
Loading

I've assigned @valentinewallace as a reviewer!
I'll wait for their review and will help manage the review process.
Once they submit their review, I'll check if a second reviewer would be helpful.

@valentinewallace valentinewallace merged commit f7b895e into lightningdevkit:main Apr 2, 2026
7 checks passed
@benthecarman benthecarman deleted the tls-perms branch April 2, 2026 18:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@valentinewallace valentinewallace valentinewallace approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@benthecarman @ldk-reviews-bot @valentinewallace