aboutsummaryrefslogtreecommitdiff
path: root/wireguard-install.sh
diff options
context:
space:
mode:
authorangristan <angristan@pm.me>2019-05-24 00:25:48 +0200
committerangristan <angristan@pm.me>2019-05-24 00:25:48 +0200
commit1981429774a9958df8254674a6eb4cad93c10a07 (patch)
tree9ac0adf227a340b20940d29ae15a0ef4c1d76c6b /wireguard-install.sh
parent9c9cf66fc8921fd814b24808e1e0ac61e5773a7c (diff)
Enfore restrictive permissions on /etc/wireguard
Diffstat (limited to 'wireguard-install.sh')
-rw-r--r--wireguard-install.sh2
1 files changed, 2 insertions, 0 deletions
diff --git a/wireguard-install.sh b/wireguard-install.sh
index 530e19b..203599f 100644
--- a/wireguard-install.sh
+++ b/wireguard-install.sh
@@ -124,6 +124,8 @@ PublicKey = $SERVER_PUB_KEY
Endpoint = $SERVER_PUB_IP:$SERVER_PORT
AllowedIPs = 0.0.0.0/0,::/0" >> "$HOME/$SERVER_WG_NIC-client.conf"
+chmod 600 -R /etc/wireguard/
+
# Enable routing on the server
echo "net.ipv4.ip_forward = 1
net.ipv6.conf.all.forwarding = 1" > /etc/sysctl.d/wg.conf
generated by cgit v1.2.3 (git 2.39.1) at 2025-06-06 17:20:37 +0000