Hello.

At some stage I got such a file on a OneAgent'ed Unix system AIX full-stack (though my sysadmins tell me it happened also on Linux infra-only system) with other+rwx Unix file permission :

/var/lib/dynatrace/oneagent/agent/runtime/0x18eba097bca4a740_java_901179/dump/classes/original/com/ibm/mq/MQEnvironment.class,
Octal permissions: 0777, Text Permissions: -rwxrwxrwx-, owner: <AppUnixTechUser>, group: <AppUnixTechUserGroup>

 with <AppUnixTechUser> and<AppUnixTechUserGroup> *not* being root:root (neither dtuser:dtuser, which btw does not exist on AIX system).

It makes unix file permission compliance health check raise incidents.

Is see this type of question is not really new. I can find in RFE and Questions, things relating to log files though, not /var/lib/dynatrace :

• Dynatrace Forum: oneagent file permissions

• Dynatrace RFE: Réalisée : world writable directories and logs
• Dynatrace RFE: dtuser file access permission is breaching security compliance requirement for RHEL8

Is anyone facing this issue? Anything we can do? Removing o-wx permission would be nice.

Regards.

For the record: ticket: https://one.dynatrace.com/hc/en-us/requests/83978