default private key permissions are group readable (and executable)
This is probably not a huge deal, but when I went to (re)move the default key & certificate so I can generate a new pair with 'schleuder cert generate' I noticed the permissions on both files were set to 750. The custom generated pair on the other hand were set to 640 & 600 for the cert & key respectively.
Default:
-rwxr-x--- 1 schleuder schleuder 1265 Feb 6 17:33 schleuder-certificate.pem
-rwxr-x--- 1 schleuder schleuder 1679 Feb 6 17:33 schleuder-private-key.pem
Custom:
-rw-r----- 1 schleuder schleuder 1265 Feb 7 15:13 schleuder-certificate.pem
-rw------- 1 schleuder schleuder 1679 Feb 7 15:13 schleuder-private-key.pem
Edited by fleish