From ed9d57d0a49a9397807352bcda4b85c1d0f9596a Mon Sep 17 00:00:00 2001
From: Eelco Dolstra <eelco.dolstra@logicblox.com>
Date: Wed, 6 Nov 2013 17:29:34 +0100
Subject: [PATCH] hydra-module.nix: More paranoid permissions on the data
 directory

---
 hydra-module.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/hydra-module.nix b/hydra-module.nix
index 6fd1fd9f..a667bd4d 100644
--- a/hydra-module.nix
+++ b/hydra-module.nix
@@ -180,7 +180,7 @@ in
         after = [ "postgresql.service" ];
         environment = env;
         script = ''
-          mkdir -p ${baseDir}/data
+          mkdir -m 0700 -p ${baseDir}/data
           chown hydra ${baseDir}/data
           ln -sf ${hydraConf} ${baseDir}/data/hydra.conf
           ${optionalString (cfg.dbi == "dbi:Pg:dbname=hydra;user=hydra;") ''