On Mon, 16 Feb 2015 12:46 -0800, [email protected] wrote: > Hi. I recently submitted https://github.com/ansible/ansible/issues/10253, > but it was closed. I commented before I read the part about comments on > closed issues not being monitored, so I'm going to duplicate my thoughts > here to discuss.
IMHO, it's reasonable that Ansible wants to enforce sane file permissions for the vault file. I think we can argue if Ansible should refuse to run if the permissions aren't sane (like SSH) or if it should always enforce them regardless. I'd vote for both ;-) Submitted PR#10260 to make behavior consistent across operations (i.e. umask 077). Tested on Fedora/CentOS only. Giovanni -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/1424125940.2058986.228312793.7BF04815%40webmail.messagingengine.com. For more options, visit https://groups.google.com/d/optout.
