From 03bff7c1ee875763cc710cd926912f6598a2701d Mon Sep 17 00:00:00 2001
From: tbrehm <t.brehm@ispconfig.org>
Date: Mon, 12 Jul 2010 09:54:54 +0000
Subject: [PATCH] - Added a fix for opensuse regarding issue: FS#1250 - smtp
 file in pam.d directory on some distributions is world readable.

---
 install/dist/lib/fedora.lib.php   | 2 ++
 install/dist/lib/opensuse.lib.php | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/install/dist/lib/fedora.lib.php b/install/dist/lib/fedora.lib.php
index de41ee6fde..5dd2330745 100644
--- a/install/dist/lib/fedora.lib.php
+++ b/install/dist/lib/fedora.lib.php
@@ -232,6 +232,8 @@ class installer_dist extends installer_base {
 		$content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
 		$content = str_replace('{mysql_server_ip}', $conf['mysql']['ip'], $content);
 		wf("$pam/smtp", $content);
+		// On some OSes smtp is world readable which allows for reading database information.  Removing world readable rights should have no effect.
+		if(is_file("$pam/smtp"))    exec("chmod o= $pam/smtp");
 		//exec("chmod 660 $pam/smtp");
 		//exec("chown root:root $pam/smtp");
 	
diff --git a/install/dist/lib/opensuse.lib.php b/install/dist/lib/opensuse.lib.php
index e7edc37134..36e9c02e75 100644
--- a/install/dist/lib/opensuse.lib.php
+++ b/install/dist/lib/opensuse.lib.php
@@ -271,6 +271,8 @@ class installer_dist extends installer_base {
 		$content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
 		$content = str_replace('{mysql_server_ip}', $conf['mysql']['ip'], $content);
 		wf("$pam/smtp", $content);
+		// On some OSes smtp is world readable which allows for reading database information.  Removing world readable rights should have no effect.
+		if(is_file("$pam/smtp"))    exec("chmod o= $pam/smtp");
 		//exec("chmod 660 $pam/smtp");
 		//exec("chown root:root $pam/smtp");
 	
-- 
GitLab