Re: local.cf permissions

2011-04-03 Thread Sahil Tandon
On Sun, 2011-04-03 at 14:38:49 -0700, Ori Bani wrote: > On Sun, Apr 3, 2011 at 2:08 PM, Sahil Tandon wrote: > > On Sun, 2011-04-03 at 13:30:44 -0700, Ori Bani wrote: > > > >> From what I can tell, it is common to have local.cf > >> permissions/ownership as

Re: local.cf permissions

2011-04-03 Thread Ori Bani
>>> I played with it and set /etc/mail/spamassassin/local.cf to: >>> >>> root:root 600 (rw---) >> >> updates will reset it to 644 Really? Doesn't that depend on delivery method (yum, apt-get, etc)? Permissions get reset? But custom changes *inside* that file will be preserved, won't they? >

Re: local.cf permissions

2011-04-03 Thread John Hardin
On Mon, 4 Apr 2011, Benny Pedersen wrote: On Sun, 3 Apr 2011 15:16:06 -0700, Ori Bani wrote: I played with it and set /etc/mail/spamassassin/local.cf to: root:root 600 (rw---) updates will reset it to 644 ...so create /etc/mail/spamassassin/passwords.cf root:root 600 and put just th

Re: local.cf permissions

2011-04-03 Thread Benny Pedersen
On Sun, 3 Apr 2011 15:16:06 -0700, Ori Bani wrote: > I played with it and set /etc/mail/spamassassin/local.cf to: > > root:root 600 (rw---) updates will reset it to 644 > And it seems to work fine in simple testing. spamd starts as root and drop privileges when local.cf is readed into mem

Re: local.cf permissions

2011-04-03 Thread Ori Bani
On Sun, Apr 3, 2011 at 2:38 PM, Benny Pedersen wrote: > On Sun, 3 Apr 2011 13:30:44 -0700, Ori Bani wrote: >>   From what I can tell, it is common to have local.cf >>   permissions/ownership as >> >> root:root 644 (rw-r--r--) > > correct > >> But I ha

Re: local.cf permissions

2011-04-03 Thread Ori Bani
On Sun, Apr 3, 2011 at 2:08 PM, Sahil Tandon wrote: > On Sun, 2011-04-03 at 13:30:44 -0700, Ori Bani wrote: > >> From what I can tell, it is common to have local.cf >> permissions/ownership as >> >> root:root 644 (rw-r--r--) >> >> But I have some databa

Re: local.cf permissions

2011-04-03 Thread Benny Pedersen
On Sun, 3 Apr 2011 13:30:44 -0700, Ori Bani wrote: > From what I can tell, it is common to have local.cf > permissions/ownership as > > root:root 644 (rw-r--r--) correct > But I have some database passwords (bayes, awl) in that file and > would like NOT to have world r

Re: local.cf permissions

2011-04-03 Thread Sahil Tandon
On Sun, 2011-04-03 at 13:30:44 -0700, Ori Bani wrote: > From what I can tell, it is common to have local.cf > permissions/ownership as > > root:root 644 (rw-r--r--) > > But I have some database passwords (bayes, awl) in that file and would > like NOT to have world read per

local.cf permissions

2011-04-03 Thread Ori Bani
Hello, From what I can tell, it is common to have local.cf permissions/ownership as root:root 644 (rw-r--r--) But I have some database passwords (bayes, awl) in that file and would like NOT to have world read permissions on that file. I'm not entirely sure what process reads that