[Bug 1728723] Re: postfix check warns about symlink being group writable
Andreas Hasenack
andreas at canonical.com
Wed Nov 1 13:18:14 UTC 2017
This was fixed in 3.1.4-2 which was synced into ubuntu for zesty and
later.
Xenial does indeed show this behavior, but I don't think it's worth an
SRU to fix it. The exit code is still 0, and it's just a warning.
Maybe if there was another bug worth of an SRU, this fix could piggy
back on it.
FWIW, the fix is in debian/patches/70_postfix-check.diff:
--- a/conf/postfix-script
+++ b/conf/postfix-script
@@ -302,9 +302,14 @@
find $todo ! -user root \
-exec $WARN not owned by root: {} \;
- find $todo \( -perm -020 -o -perm -002 \) \
+ # Handle symlinks separately
+ find -L $todo \( -perm -020 -o -perm -002 \) \
-exec $WARN group or other writable: {} \;
+ find $todo -type l | while read f; do \
+ readlink "$f" | grep -q / && $WARN symlink leaves directory: "$f"; \
+ done; \
+
# Check Postfix mail_owner-owned directory tree owner/permissions.
find $data_directory/. ! -user $mail_owner \
** Changed in: postfix (Ubuntu)
Importance: Undecided => Low
** Changed in: postfix (Ubuntu)
Status: New => Triaged
** Tags added: bitesize
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1728723
Title:
postfix check warns about symlink being group writable
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1728723/+subscriptions
More information about the Ubuntu-server-bugs
mailing list