On Tue, 25 Apr 2006, Max Bowsher wrote:
Package: dovecot-common Version: 1.0.beta7-1 Severity: importantI have edited dovecot.conf to use a non-default SSL certificate and key, instead of /etc/ssl/{private,certs}/dovecot.pem. My cert+key is shared between multiple services, not only Dovecot. The Dovecot postinst gets the cert/key paths from the config file, and then unconditionally chowns/chmods them - this is BAD! It breaks some of my other services. Dovecot should NOT tamper with the permissions on files which it does not own.
Ok, I'll move the chown and chmod stuff up into the block of code which generates a self-signed certificate. I'll assume that it a person provides their own certificate, they know what they are doing permissions-wise. Expect a new version in a day or two.
-- Jaldhar H. Vyas <[EMAIL PROTECTED]> La Salle Debain - http://www.braincells.com/debian/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
