I'm running Zabbix 1.8.1 on Red Hat Linux with Apache. Currently my zabbix.conf.php file resides in /var/www/html/zabbix/conf, and its permissions are:
-rw-r--r-- 1 root root 1036 Mar 16 16:37 zabbix.conf.php
i.e. it is world-readable. Since the zabbix MySQL username/password resides in that file in plain text, this is a Bad Thing.
Which users actually need to have read/write acccess to this file? apache? zabbix? other?
-rw-r--r-- 1 root root 1036 Mar 16 16:37 zabbix.conf.php
i.e. it is world-readable. Since the zabbix MySQL username/password resides in that file in plain text, this is a Bad Thing.
Which users actually need to have read/write acccess to this file? apache? zabbix? other?