On Thu, 22 Jan 2009, Robert Spier wrote:
Adam Prime wrote:
Robert Spier wrote:
Matt Sergeant wrote:
Should we "fix" qpsmtpd config loading to check for file permissions
as described in: http://use.perl.org/~Alias/journal/38319 ?
We'd have to have a config setting to say what the appropriate config
settings should be. :)
You could at least confirm that the file isn't world writable.
That would be a safe compromise.
But still very wasteful of system calls (and CPU). There are a million
ways an admin could shoot herself in the foot - why should we check for
this particular one over and over?
I wonder if we could do that as a config plugin.
-R
