Removed other group permissions o= from pam.d/smtp file in installer_base.lib.php file.

be3234e0 · tekati · 0d27f8b7 · be3234e0
Commit be3234e0 authored Jul 12, 2010 by tekati
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletion

install/lib/installer_base.lib.php install/lib/installer_base.lib.php +3 -1

No files found.
--- a/install/lib/installer_base.lib.php
+++ b/install/lib/installer_base.lib.php
@@ -637,6 +637,8 @@ class installer_base {
 		//* configure pam for SMTP authentication agains the ispconfig database
 		$configfile = 'pamd_smtp';
 		if(is_file("$pam/smtp"))    copy("$pam/smtp", "$pam/smtp~");
+		// On some OSes smtp is world readable which allows for reading database information.  Removing world readable rights should have no effect.
+		if(is_file("$pam/smtp"))    exec("chmod o= $pam/smtp");
 		if(is_file("$pam/smtp~"))   exec("chmod 400 $pam/smtp~");

 		$content = rf("tpl/$configfile.master");
@@ -1638,4 +1640,4 @@ class installer_base {
 	}
 }

-?>
\ No newline at end of file
+?>