From dd1558bafa72f16702f1d82ef1483454acc82035 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sun, 5 Nov 2023 21:43:16 +0000
Subject: [PATCH] Set sensible permissions on nftables config

---
 ansible/roles/ingress/tasks/firewall.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ansible/roles/ingress/tasks/firewall.yml b/ansible/roles/ingress/tasks/firewall.yml
index 10a35f4..e3ef0f4 100644
--- a/ansible/roles/ingress/tasks/firewall.yml
+++ b/ansible/roles/ingress/tasks/firewall.yml
@@ -8,6 +8,7 @@
     src: files/nftables.conf
     dest: /etc/nftables.conf
     validate: nft -c -f %s
+    mode: "644"
   become: true
   notify: reload nftables