ceilometer charm creates world-readable /etc/ceilometer/ceilometer.conf, exposing credentials

I think it's the /etc/ceilometer directory which should be 750 rather than 755

Set to 0700 as the other packages.

Status changed to 'Confirmed' because the bug affects multiple users.

This bug was fixed in the package ceilometer - 1:8.0.0-0ubuntu5

---------------
ceilometer (1:8.0.0-0ubuntu5) zesty; urgency=medium

  * debian/control: Really fix adjustements.

 -- Chuck Short <email address hidden> Fri, 10 Feb 2017 10:06:55 -0500

This particular issue wasn't actually fixed in the ceilometer package, so moving back to in progress.

I've pushed the fix for this to https://code.launchpad.net/~ubuntu-server-dev/ubuntu/+source/ceilometer/+git/ceilometer.

However, I attempted to upload the package but it was rejected because there is now an 8.0.1 version of ceilometer in zesty, which wasn't pushed to the git repo, so now the git repo is out of sync.

Chuck, I'm leaving this for you to fix up.

This bug was fixed in the package ceilometer - 1:8.0.1-0ubuntu2

---------------
ceilometer (1:8.0.1-0ubuntu2) zesty; urgency=medium

  * d/ceilometer-commmon.postinst: Set permissions to 0640 for
    /etc/ceilometer/ceilometer.conf (LP: #1588391).

 -- Corey Bryant <email address hidden> Thu, 16 Mar 2017 10:19:40 -0400

This is fixed now in the ceilometer package which is currently in zesty-proposed and xenial-staging. I've tested with the charm and ceilometer.conf perms remain at 0640.

-rw-r----- 1 ceilometer ceilometer 590 Mar 16 15:47 ceilometer.conf