From 09df27ed5df86e5424fdf40618e093b31d51f643 Mon Sep 17 00:00:00 2001 From: 12ww1160 <12ww1160@confdroid.com> Date: Sun, 5 Apr 2026 15:41:44 +0200 Subject: [PATCH 1/2] OP#561 add sonarqube badge --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 7da0eb5..f43420c 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,7 @@ # Readme [![Build Status](https://jenkins.confdroid.com/buildStatus/icon?job=confdroid_ssh&style=plastic)](https://jenkins.confdroid.com/job/confdroid_ssh/) +[![Security Hotspots](https://sonarqube.confdroid.com/api/project_badges/measure?project=confdroid_ssh&metric=security_hotspots&token=sqb_8c77823906f10af2e4f8fcf24c467fe9dc500dba)](https://sonarqube.confdroid.com/dashboard?id=confdroid_ssh) - [Readme](#readme) - [Synopsis](#synopsis) From c9bf4a8b5a61087120408004064996509fdab660 Mon Sep 17 00:00:00 2001 From: 12ww1160 <12ww1160@confdroid.com> Date: Sun, 5 Apr 2026 15:46:34 +0200 Subject: [PATCH 2/2] OP#561 fix permissions --- manifests/main/dirs.pp | 4 ++-- manifests/main/files.pp | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/manifests/main/dirs.pp b/manifests/main/dirs.pp index e3ae64a..33c2cc8 100644 --- a/manifests/main/dirs.pp +++ b/manifests/main/dirs.pp @@ -12,7 +12,7 @@ class confdroid_ssh::main::dirs ( path => $ssh_etc_path, owner => $sshd_user, group => $sshd_user, - mode => '0755', + mode => '0700', selrange => s0, selrole => object_r, seltype => etc_t, @@ -23,7 +23,7 @@ class confdroid_ssh::main::dirs ( ensure => directory, owner => $sshd_user, group => $sshd_user, - mode => '0755', + mode => '0700', selrange => s0, selrole => object_r, seltype => etc_t, diff --git a/manifests/main/files.pp b/manifests/main/files.pp index f464f53..5ba3bba 100644 --- a/manifests/main/files.pp +++ b/manifests/main/files.pp @@ -26,7 +26,7 @@ class confdroid_ssh::main::files ( path => $sshd_custom_conf, owner => $sshd_user, group => $sshd_user, - mode => '0755', + mode => '0640', selrange => s0, selrole => object_r, seltype => etc_t,