From 6a1a1721bdf9403f2b34573a9666104dbe88e577 Mon Sep 17 00:00:00 2001
From: Mike Salvatore <mike.s.salvatore@gmail.com>
Date: Thu, 10 Jun 2021 07:38:29 -0400
Subject: [PATCH] island: Loosen permissions on ssl cert in
 create_certificate.sh

---
 monkey/monkey_island/linux/create_certificate.sh | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/monkey/monkey_island/linux/create_certificate.sh b/monkey/monkey_island/linux/create_certificate.sh
index cbbe5261b..acdbd5b9d 100644
--- a/monkey/monkey_island/linux/create_certificate.sh
+++ b/monkey/monkey_island/linux/create_certificate.sh
@@ -21,15 +21,15 @@ umask 377
 
 echo "Generating key in $server_root/server.key..."
 openssl genrsa -out "$server_root"/server.key 2048
-chmod 400 "$server_root"/server.key
+chmod 600 "$server_root"/server.key
 
 echo "Generating csr in $server_root/server.csr..."
 openssl req -new -key "$server_root"/server.key -out "$server_root"/server.csr -subj "/C=GB/ST=London/L=London/O=Global Security/OU=Monkey Department/CN=monkey.com"
-chmod 400 "$server_root"/server.csr
+chmod 600 "$server_root"/server.csr
 
 echo "Generating certificate in $server_root/server.crt..."
 openssl x509 -req -days 366 -in "$server_root"/server.csr -signkey "$server_root"/server.key -out "$server_root"/server.crt
-chmod 400 "$server_root"/server.crt
+chmod 600 "$server_root"/server.crt
 
 
 # Shove some new random data into the file to override the original seed we put in.