Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Patrick Ben Koetter (pstate-of-mind.de)
Date: Wed Apr 02 2008 - 00:38:27 CDT
* Victor Duchovni <postfix-userspostfix.org>:
> On Wed, Apr 02, 2008 at 12:30:33AM +0200, Patrick Ben Koetter wrote:
> > > -- permissions for /etc/postfix/sasl_passwd --
> > > -rw-r--r-- 1 root root 33 2007-08-10 17:38 /etc/postfix/sasl_passwd
> > >
> > > -- permissions for /etc/postfix/sasl_passwd.db --
> > > -rw-r--r-- 1 root root 12288 2007-08-10 17:38 /etc/postfix/sasl_passwd.db
> > >
> > > /etc/postfix/sasl_passwd.db is up to date.
> > Okay.
> World readable files with clear-text passwords are not usually "Okay".
> This won't break use by Postfix, but is not a good idea.
Yes, definitely. Thanks for spotting it. I should add a test to the script to
The Book of Postfix
saslfinger (debugging SMTP AUTH):