From 76581b6ed9049348d45dac6c7540ff536a6ef273 Mon Sep 17 00:00:00 2001
From: Aryan Dame <aryan_dame@persistent.com>
Date: Mon, 17 Feb 2025 13:58:41 +0530
Subject: [PATCH] Changed the permission of config file to allow access to only
 owner. This fixes CVE-2025-24337

---
 app.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app.go b/app.go
index 93d359c..642bcb3 100644
--- a/app.go
+++ b/app.go
@@ -554,7 +554,7 @@ requests. We recommend supplying a valid host name.`)
 		}
 
 		if network == "unix" {
-			err = os.Chmod(bindAddress, 0o666)
+			err = os.Chmod(bindAddress, 0o600)
 			if err != nil {
 				log.Error("Could not update socket permissions: %v", err)
 				os.Exit(1)