NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2008-04

Re: Upgrade from Sarge to Etch Has Broken my Postfix

From: Patrick Ben Koetter (pstate-of-mind.de)
Date: Wed Apr 02 2008 - 00:38:27 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Victor Duchovni <postfix-userspostfix.org>:
> On Wed, Apr 02, 2008 at 12:30:33AM +0200, Patrick Ben Koetter wrote:
>
> > > -- permissions for /etc/postfix/sasl_passwd --
> > > -rw-r--r-- 1 root root 33 2007-08-10 17:38 /etc/postfix/sasl_passwd
> > >
> > > -- permissions for /etc/postfix/sasl_passwd.db --
> > > -rw-r--r-- 1 root root 12288 2007-08-10 17:38 /etc/postfix/sasl_passwd.db
> > >
> > > /etc/postfix/sasl_passwd.db is up to date.
> >
> > Okay.
>
> World readable files with clear-text passwords are not usually "Okay".

Okay. ;)

> This won't break use by Postfix, but is not a good idea.

Yes, definitely. Thanks for spotting it. I should add a test to the script to
automate that.

prick

--
The Book of Postfix
<http://www.postfix-book.com>
saslfinger (debugging SMTP AUTH):
<http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]