Bug#889009: postfix: /etc/systemd/system/postfix.service.d/override.conf is not world readable

Thu, 01 Feb 2018 00:39:25 -0800 

Package: postfix
Version: 3.2.4-1
Severity: normal

check out these permissions:

0 root@alice:~# ls -la /etc/systemd/system/postfix.service.d/override.conf 
-rw------- 1 root root 66 Jan 23  2017 
/etc/systemd/system/postfix.service.d/override.conf
0 root@alice:~#


and yet, there is nothing secret in the file:

0 root@alice:~# cat /etc/systemd/system/postfix.service.d/override.conf 
[Unit]
After=network-online.target
After=systemd-resolved.service
0 root@alice:~# 

shouldn't this file be created in mode 0644?  no other override.conf
files are unreadable by "other" on this system.

      --dkg

-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (500, 'oldstable'), 
(200, 'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1, 
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.14.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages postfix depends on:
ii  adduser                3.116
ii  cpio                   2.12+dfsg-6
ii  debconf [debconf-2.0]  1.5.65
ii  dpkg                   1.19.0.5
ii  libc6                  2.26-4
ii  libdb5.3               5.3.28-13.1+b1
ii  libicu57               57.1-8
ii  libsasl2-2             2.1.27~101-g0780600+dfsg-3
ii  libssl1.1              1.1.0g-2
ii  lsb-base               9.20170808
ii  netbase                5.4
ii  ssl-cert               1.0.39

Versions of packages postfix recommends:
ii  python3  3.6.4-1

Versions of packages postfix suggests:
ii  claws-mail [mail-reader]       3.16.0-1
ii  dovecot-core [dovecot-common]  1:2.2.33.2-1
ii  emacs25 [mail-reader]          25.2+1-6
ii  heirloom-mailx [mail-reader]   12.5-4
ii  libsasl2-modules               2.1.27~101-g0780600+dfsg-3
ii  mailutils [mail-reader]        1:3.4-1
ii  nmh [mail-reader]              1.7-2
pn  postfix-cdb                    <none>
pn  postfix-doc                    <none>
pn  postfix-ldap                   <none>
pn  postfix-lmdb                   <none>
pn  postfix-mysql                  <none>
pn  postfix-pcre                   <none>
pn  postfix-pgsql                  <none>
ii  postfix-sqlite                 3.2.4-1
pn  procmail                       <none>
pn  resolvconf                     <none>
ii  s-nail [mail-reader]           14.9.6-1
pn  sasl2-bin                      <none>
ii  sylpheed [mail-reader]         3.6.0-1
ii  thunderbird [mail-reader]      1:52.6.0-1
pn  ufw                            <none>

-- debconf information excluded

Reply via email to