From be3234e0b28a4157bcd2a4783644b2f9b9b068e7 Mon Sep 17 00:00:00 2001
From: tekati <tekati@ispconfig3>
Date: Mon, 12 Jul 2010 03:16:07 +0000
Subject: [PATCH] Removed other group permissions o= from pam.d/smtp file in
 installer_base.lib.php file.

---
 install/lib/installer_base.lib.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/install/lib/installer_base.lib.php b/install/lib/installer_base.lib.php
index b49310c1e..cb489b519 100644
--- a/install/lib/installer_base.lib.php
+++ b/install/lib/installer_base.lib.php
@@ -637,6 +637,8 @@ class installer_base {
 		//* configure pam for SMTP authentication agains the ispconfig database
 		$configfile = 'pamd_smtp';
 		if(is_file("$pam/smtp"))    copy("$pam/smtp", "$pam/smtp~");
+		// On some OSes smtp is world readable which allows for reading database information.  Removing world readable rights should have no effect.
+		if(is_file("$pam/smtp"))    exec("chmod o= $pam/smtp");
 		if(is_file("$pam/smtp~"))   exec("chmod 400 $pam/smtp~");
 
 		$content = rf("tpl/$configfile.master");
@@ -1638,4 +1640,4 @@ class installer_base {
 	}
 }
 
-?>
\ No newline at end of file
+?>
-- 
GitLab