Skip to content

community/syncthing: don't allow reading by default

Sertonix requested to merge sertonix/aports:syncthing-read-permissions into master

Currently the syncthing home dir can be read by anyone. This directory contains the syncthing config which contains hashed passwords and other sensitive information. Also the content which is synced may include sensitive information. It would be better to explicitly permit reading if needed. (principle of least knowledge)

Edited by Sertonix

Merge request reports