From 96ec3c7fb956aee2be611b16f8843abaebb15cab Mon Sep 17 00:00:00 2001
From: cryptocode <cryptocode@zolo.io>
Date: Sat, 23 Jun 2018 13:21:02 +0200
Subject: [PATCH] Set permissions on backup files so only owner can read and
 update the backup

---
 rai/node/wallet.cpp | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/rai/node/wallet.cpp b/rai/node/wallet.cpp
index 258fb7396d..62c81b46f9 100644
--- a/rai/node/wallet.cpp
+++ b/rai/node/wallet.cpp
@@ -6,6 +6,7 @@
 
 #include <argon2.h>
 
+#include <boost/filesystem.hpp>
 #include <boost/property_tree/json_parser.hpp>
 #include <boost/property_tree/ptree.hpp>
 
@@ -554,6 +555,10 @@ void rai::wallet_store::write_backup (MDB_txn * transaction_a, boost::filesystem
 	backup_file.open (path_a.string ());
 	if (!backup_file.fail ())
 	{
+		// Set permissions to 600
+		boost::system::error_code ec;
+		boost::filesystem::permissions (path_a, boost::filesystem::perms::owner_read | boost::filesystem::perms::owner_write, ec);
+
 		std::string json;
 		serialize_json (transaction_a, json);
 		backup_file << json;