Bug#831611: marked as done (fetchmail creates .fetchids with 660 permissions but requires max 700)

Debian Bug Tracking System Mon, 05 Aug 2019 17:22:06 -0700

Your message dated Tue, 06 Aug 2019 00:17:28 +0000
with message-id <[email protected]>
and subject line Bug#831611: fixed in fetchmail 6.4.0~rc1-1
has caused the Debian Bug report #831611,
regarding fetchmail creates .fetchids with 660 permissions but requires max 700
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
831611: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=831611
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: fetchmail
Version: 6.3.26-1+b1
Severity: normal

Dear Maintainer,

-- Brief:

fetchmail creates the file `~/.fetchids` with -rw-rw---- (0660) permissions and 
then complains afterwards that the file must not have more than -rwx----- 
(0700).

-- Observed Behaviour:

On every run fetchmail set the permissions of `~/.fetchids` to 660. On
the next run of fetchmail (if fetchmail runs successfully before), it
complains that the permissions of `~/.fetchids` must not have more then
700 and exits.

-- Expected Behaviour:

fetchmail should not touch the file properties of `~/.fetchids` and
create it with 600, if it not exists yet.

-- Reproduce:

You need a pop3 server which requires the `~/.fetchids` file.

All following commands are issued with the same non-admin user (here
`raab`) in a defaulted bash shell.

My `~/.fetchmailrc` files looks as follows:

    set postmaster raab

    set bouncemail

    poll pop3.kabelmail.de with proto POP3
            user "--REMOVED--" there with password
            "--REMOVED--" options ssl keep

For the server pop3.kabelmail.de fetchmail requires an `~/.fetchids`
file. fetchmail creates the file with 660 permissions and fill it with
appropriate data.

If you call fetchmail again it checks the permissions of the
`~/.fetchids` file and complains:

    File /home/raab/.fetchids must have no more than -rwx------ (0700) 
permissions.

The command aborts with an error return.

If you then set

    chmod 600 ~/.fetchids

and then run fetchmail again, it runs fine like expected.
But the file `~/.fetchids` has then again 660 permissions. Therefore, 
`~/.fetchids` is created again -- even if exists already -- by fetchmail or the 
permissions are always set to 660 anywhere after the check of the file 
permissions.
Hence, if you now run fetchmail again, it complains again about wrong file 
permissions.
Thus you can run fetchmail regulary (e.g. cron) only with:

    /usr/bin/fetchmail; chmod 600 $HOME/.fetchids


-- System Information:
Debian Release: 8.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable'), (110, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages fetchmail depends on:
ii  adduser           3.113+nmu3
ii  debianutils       4.4+b1
ii  libc6             2.19-18+deb8u4
ii  libcomerr2        1.42.12-1.1
ii  libgssapi-krb5-2  1.12.1+dfsg-19+deb8u2
ii  libkrb5-3         1.12.1+dfsg-19+deb8u2
ii  libssl1.0.0       1.0.1t-1+deb8u2
ii  lsb-base          4.1+Debian13+nmu1

Versions of packages fetchmail recommends:
ii  ca-certificates  20141019+deb8u1

Versions of packages fetchmail suggests:
pn  fetchmailconf                   <none>
ii  postfix [mail-transport-agent]  2.11.3-1
ii  resolvconf                      1.76.1

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: fetchmail
Source-Version: 6.4.0~rc1-1

We believe that the bug you reported is fixed in the latest version of
fetchmail, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laszlo Boszormenyi (GCS) <[email protected]> (supplier of updated fetchmail 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 05 Aug 2019 22:35:46 +0000
Source: fetchmail
Architecture: source
Version: 6.4.0~rc1-1
Distribution: unstable
Urgency: medium
Maintainer: Laszlo Boszormenyi (GCS) <[email protected]>
Changed-By: Laszlo Boszormenyi (GCS) <[email protected]>
Closes: 831611 922616 926743 928916
Changes:
 fetchmail (6.4.0~rc1-1) unstable; urgency=medium
 .
   * New major upstream RC release:
     - set umask properly before writing the .fetchids file (closes: #831611),
     - fix clang null pointer checks to prevent potential segfaults.
   * Backport fix to no longer reports System error during SSL_connect():
     Success (closes: #928916).
   * Sync with Ubuntu.
 .
   [ nick black <[email protected]> ]
   * Use full path for invoke-rc.d (closes: #926743).
 .
   [ Russell Coker <[email protected]> ]
   * Fix init.d script typo that breaks labelling for SE Linux
     (closes: #922616).
 .
   [ Bryce Harrington <[email protected]> ]
   * TLS: set hostname for SNI.
Checksums-Sha1:
 8b4fc40b68d6e74b71aad8dc03d49f5375ccb1df 1915 fetchmail_6.4.0~rc1-1.dsc
 8b90cadab39f07a7a0e01b490a0aa141330ab549 1457957 
fetchmail_6.4.0~rc1.orig.tar.gz
 9c05afbb7154df02f9937b48b3223446cfb37cf5 53516 
fetchmail_6.4.0~rc1-1.debian.tar.xz
Checksums-Sha256:
 2a0401bcecbe718292e088eba56aeb5bb1715b723d9dd5256f02deb9e4f1da37 1915 
fetchmail_6.4.0~rc1-1.dsc
 c39efefa71704147444e66b6d77be929cae93b00213256b39df96181db90bb33 1457957 
fetchmail_6.4.0~rc1.orig.tar.gz
 1e337751e014e57cc833b8da40caa68edb7d55bd654b409bcd1fd98a05a0c698 53516 
fetchmail_6.4.0~rc1-1.debian.tar.xz
Files:
 1a10a4ee7f70b3b15ef54abe2fc12cd7 1915 mail optional fetchmail_6.4.0~rc1-1.dsc
 3dae1a8c50568c4220c6e0a3f5ac227b 1457957 mail optional 
fetchmail_6.4.0~rc1.orig.tar.gz
 39bf85a5ade2ec53827a3d50202e1363 53516 mail optional 
fetchmail_6.4.0~rc1-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=UOzq
-----END PGP SIGNATURE-----

--- End Message ---

Bug#831611: marked as done (fetchmail creates .fetchids with 660 permissions but requires max 700)

Reply via email to