On Jul 24, 2012, at 18:24, DTNX Postmaster wrote:
> This works for us;
>
> $ ls -ald /etc/postfix
> drwxr-x--- 5 root postcfg 4096 Jul 24 18:05 /etc/postfix
>
> The postfix user is a member of the 'postcfg' group. Any admin accounts
> that need access to the contents can also be added if needs
Viktor Dukhovni:
> On Wed, Jul 25, 2012 at 10:29:44AM +0200, Reindl Harald wrote:
>
> > the main config AFAIK needs 644
>
> Correct, the main.cf and master.cf files should be world-readable.
>
> > sensible files can be done with proxymap and so restricted
> >
> > http://www.postfix.org/proxymap
On Wed, Jul 25, 2012 at 10:29:44AM +0200, Reindl Harald wrote:
> the main config AFAIK needs 644
Correct, the main.cf and master.cf files should be world-readable.
> sensible files can be done with proxymap and so restricted
>
> http://www.postfix.org/proxymap.8.html
Proxymap does not matter h
Am 24.07.2012 18:58, schrieb Michael Orlitzky:
> Thanks, I actually tried this but ran into a problem:
>
> Jul 24 01:45:50 localhost postfix/sendmail[26795]: fatal: open
> /etc/postfix/main.cf: Permission denied
>
> That alone is easy to fix (allow $authorized_submit_users read access to
>
On 07/24/2012 07:33 PM, mouss wrote:
>
> map_directory = /var/db/postmap
> cidr = cidr:${map_directory}/cidr
> db = ${db_type}:${map_directory}/${db_type}
> map_directory = /var/db/postmap
> regex = ${regex_type}:${map_directory}/${regex_type}
> sql = ${sql_type}:${map_directory}/${sql_type}
> ...
Le 24/07/2012 18:09, Michael Orlitzky a écrit :
> We store our virtual_foo_maps in,
>
> /etc/posfix/maps/virtual_foo_maps.pgsql
>
> and so the (read-only) database credentials are visible in that file.
> I'd like to tighten this up if possible, but I don't want to do anything
> stupid.
>
> If
On Wednesday, July 25, 2012 at 12:09 AM, Michael Orlitzky wrote:
> We store our virtual_foo_maps in,
>
> /etc/posfix/maps/virtual_foo_maps.pgsql
>
> and so the (read-only) database credentials are visible in that file.
> I'd like to tighten this up if possible, but I don't want to do anything
On 07/24/12 12:24, DTNX Postmaster wrote:
> On Jul 24, 2012, at 18:09, Michael Orlitzky wrote:
>
>> We store our virtual_foo_maps in,
>>
>> /etc/posfix/maps/virtual_foo_maps.pgsql
>>
>> and so the (read-only) database credentials are visible in that file.
>> I'd like to tighten this up if possibl
On Jul 24, 2012, at 18:09, Michael Orlitzky wrote:
> We store our virtual_foo_maps in,
>
> /etc/posfix/maps/virtual_foo_maps.pgsql
>
> and so the (read-only) database credentials are visible in that file.
> I'd like to tighten this up if possible, but I don't want to do anything
> stupid.
>
>
We store our virtual_foo_maps in,
/etc/posfix/maps/virtual_foo_maps.pgsql
and so the (read-only) database credentials are visible in that file.
I'd like to tighten this up if possible, but I don't want to do anything
stupid.
If I'm not going about this all wrong, what can I do to prevent e.g.
10 matches
Mail list logo
