RubyGems - rails_pwnerer - Versions diffs - 0.6.6 → 0.6.7 - Mend

rails_pwnerer 0.6.6 → 0.6.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

data/CHANGELOG +2 -0
data/lib/pwnage/base/atomics.rb +9 -1
data/lib/pwnage/base/dirs.rb +5 -0
data/lib/pwnage/config/repository.rb +3 -1
data/lib/pwnage/scaffolds/config.rb +1 -1
data/rails_pwnerer.gemspec +3 -3
metadata +2 -2

data/CHANGELOG CHANGED Viewed

@@ -1,3 +1,5 @@
+v0.6.7. Tighter permissions around the configuration database files.
 v0.6.6. Bugfix in configuration update system: wasn't retaining database settings.
 v0.6.5. Faster killing in kill_process_set, plus now it honors the :verbose option.

data/lib/pwnage/base/atomics.rb CHANGED Viewed

@@ -33,13 +33,21 @@ module RailsPwnage::Base
   end
   # writes data to a repository
-  def atomic_write(data, path, name)
+  def atomic_write(data, path, name, options = {})
     main_file = File.join(path, name) + '.yml'
     dup_file = File.join(path, name) + '.yml2'
     # append verification info at the end of the file to guard from incomplete writes
     ts = Time.now
     ts_checksum = Digest::MD5.hexdigest("#{ts.tv_sec}.#{ts.tv_usec}")
+    if options[:owner]
+      # secure the file
+      File.open(dup_file, 'w').close
+      uid = uid_for_username options[:owner]
+      gid = gid_for_username options[:owner]
+      File.chown uid, gid, dup_file
+      File.chmod options[:permissions] || 0660, dup_file
+    end
     File.open(dup_file, 'w') { |f| YAML::dump [data, ts.tv_sec, ts.tv_usec, ts_checksum], f }
     # move the file atomically to the main copy

data/lib/pwnage/base/dirs.rb CHANGED Viewed

@@ -24,6 +24,11 @@ module RailsPwnage::Base
     return (group_entry.nil?) ? nil : group_entry.name
   end
+  # gets the currently logged on user
+  def current_user
+    Etc.getpwuid.name
+  end
   # executes a block in a temporary directory
   def with_temp_dir(options = {})
     temp_dir = "#{options[:root] ? '/' : ''}rbpwn_#{Time.now.to_i}"

data/lib/pwnage/config/repository.rb CHANGED Viewed

@@ -81,7 +81,9 @@ module RailsPwnage::Config
     if @@db_cache[db_name].nil?
       atomic_erase db_path, db_name
     else
-      atomic_write @@db_cache[db_name], db_path, db_name
+      host_config = get_db :host
+      atomic_write @@db_cache[db_name], db_path, db_name,
+                   :owner => (host_config && host_config[:pwnerer_user])
     end
     @@db_dirty[db_name] = false
   end

data/lib/pwnage/scaffolds/config.rb CHANGED Viewed

@@ -24,7 +24,7 @@ class RailsPwnage::Scaffolds::Config
     # password for creating / dropping databases
     host_info[:dbroot_pass] = ''
     # the user owning the /prod subtrees
-    host_info[:pwnerer_user] = 'victor'
+    host_info[:pwnerer_user] = current_user
     RailsPwnage::Config.flush_db :host

data/rails_pwnerer.gemspec CHANGED Viewed

@@ -1,18 +1,18 @@
-# Gem::Specification for Rails_pwnerer-0.6.6
+# Gem::Specification for Rails_pwnerer-0.6.7
 # Originally generated by Echoe
 --- !ruby/object:Gem::Specification
 name: rails_pwnerer
 version: !ruby/object:Gem::Version
-  version: 0.6.6
+  version: 0.6.7
 platform: ruby
 authors:
 - Victor Costan
 autorequire:
 bindir: bin
-date: 2008-09-22 00:00:00 -04:00
+date: 2008-09-28 00:00:00 -04:00
 default_executable:
 dependencies:
 - !ruby/object:Gem::Dependency

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: rails_pwnerer
 version: !ruby/object:Gem::Version
-  version: 0.6.6
+  version: 0.6.7
 platform: ruby
 authors:
 - Victor Costan
@@ -9,7 +9,7 @@ autorequire:
 bindir: bin
 cert_chain: []
-date: 2008-09-22 00:00:00 -04:00
+date: 2008-09-28 00:00:00 -04:00
 default_executable:
 dependencies:
 - !ruby/object:Gem::Dependency