[Pkg-mlmmj-devel] Bug#617242: mlmmj-make-ml does not ensure correct permissions for created files and directories
Reuben Thomas
rrt at sc3d.org
Mon Nov 6 12:31:09 UTC 2017
On 6 November 2017 at 03:07, Chris Knadle <Chris.Knadle at coredump.us> wrote:
> tag 617242 + moreinfo
> thanks
>
> Although this bug is very old I think it deserves are maintainer response.
>
> > I have my umask set to 0027. If I run mlmmj-make-ml with sudo, then
> > this umask is inherited, and used to create all the files and
> > directories for a new mailing list, which is wrong. The files and
> > directories should be explicitly chmodded to the correct permissions.
>
> The mlmmj package in Debian doesn't come with pre-configuration for a
> specific MTA, nor setting up a user for mlmmj, instead giving
> administrative guidance for basic setups with various MTAs, and allowing
> for more complex configurations by leaving ownership and permissions
> configuration to the administrator. As far as I can tell, the specific
> permissions for files in /var/spool/mlmmj/ likely differ depending on
> the specific setup used.
>
To be honest, I don't think (it's a long time ago now, as you say) that
this had occurred to me.
Do you believe there are specific permissions that always neeed to be
> used regardless of specific MTA and setup?
>
No. However, it would be good to have some opinionated defaults.
Otherwise, this is just another hard-to-set-up package that requires lots
of reading and fiddling, one is not sure (unless one becomes an expert)
that it is set up properly, securely etc., and one gravitates towards
proprietary products or cloud offerings that are simply easier and make
this sort of thing Someone Else's Problem, which is a shame.
So for example having an out-of-the-box Postfix integration, along the
lines described above, would be great.
Given that mlmmj is not itself opinionated, offering the choice of
essentially "unconfigured" or "opinionated setup integrated with other
commonly-used Debian packages" seems like an excellent way to cover both
causal and expert use.
--
https://rrt.sc3d.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-mlmmj-devel/attachments/20171106/e9caa1f1/attachment.html>
More information about the Pkg-mlmmj-devel
mailing list