From efcb55b52362b517b3b9343f0b2183d7a8ef149e Mon Sep 17 00:00:00 2001
From: Zenidd <jpsaezgutierrez@gmail.com>
Date: Mon, 9 Mar 2020 18:27:05 +0100
Subject: [PATCH] Setting restrictive permissions on filebeat related files

---
 roles/wazuh/ansible-filebeat/tasks/config.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/roles/wazuh/ansible-filebeat/tasks/config.yml b/roles/wazuh/ansible-filebeat/tasks/config.yml
index ce63503d..d45b06e8 100644
--- a/roles/wazuh/ansible-filebeat/tasks/config.yml
+++ b/roles/wazuh/ansible-filebeat/tasks/config.yml
@@ -5,7 +5,7 @@
     dest: "/etc/filebeat/filebeat.yml"
     owner: root
     group: root
-    mode: 0644
+    mode: 0400
   notify: restart filebeat
   tags: configure
 
@@ -15,7 +15,7 @@
     dest: "/etc/filebeat/wazuh-template.json"
     owner: root
     group: root
-    mode: 0644
+    mode: 0400
   notify: restart filebeat
   tags: configure
 
@@ -30,7 +30,7 @@
   copy:
     src: "{{ item }}"
     dest: "{{ filebeat_ssl_dir }}/{{ item | basename }}"
-    mode: 0644
+    mode: 0400
   with_items:
     - "{{ filebeat_ssl_key_file }}"
     - "{{ filebeat_ssl_certificate_file }}"