AWS dcv documentation change
Summary
Added macOS-specific instructions for TLS certificate management including file permissions and ownership requirements.
Security assessment
Certificate management documentation relates to security best practices, but the changes only add platform-specific implementation details rather than addressing a vulnerability. The chmod 600 instruction reinforces existing security practices.
Diff
diff --git a/dcv/latest/adminguide/manage-cert.md b/dcv/latest/adminguide/manage-cert.md index bed6f291a..f62c19157 100644 --- a//dcv/latest/adminguide/manage-cert.md +++ b//dcv/latest/adminguide/manage-cert.md @@ -56,0 +57,18 @@ Linux Amazon DCV server +macOS Amazon DCV server + + +###### To change the server's TLS certificate on macOS + + 1. Place the certificate and its key in the following location on your macOS Amazon DCV server: + + /etc/dcv/ + + 2. Grant ownership of both files to the `dcv` user, and change their permissions to 600 (only the owner can read or write to them). + + $ sudo chown dcv dcv.pem dcv.key + + $ sudo chmod 600 dcv.pem dcv.key + + + +