Bug#617810: exim4 postinst unconditionally trashes permissions of log dir
Ian Jackson
ijackson at chiark.greenend.org.uk
Fri Mar 11 15:55:13 UTC 2011
Package: exim4-base
Version: 4.69-9+lenny4
Tags: patch
I just did the exim4 security update and it reset the permissions of
my /var/log/exim4 to 600, due to this in the postinst:
install -d -oDebian-exim -gadm -m2750 /var/log/exim4
On my system the policy is that the logs are supposed to be readable.
I suggest this patch, as a band-aid.
Ian.
--- /usr/src/exim4-4.69/debian/exim4-base.postinst~ 2011-03-11 15:39:38.000000000 +0000
+++ /usr/src/exim4-4.69/debian/exim4-base.postinst 2011-03-11 15:45:36.000000000 +0000
@@ -20,6 +20,7 @@
fi
# Create directories for log etc
# install also fixes permissions.
+ test -d /var/log/exim4 || \
install -d -oDebian-exim -gadm -m2750 /var/log/exim4
install -d -oDebian-exim -gDebian-exim -m750 /var/run/exim4
install -d -oDebian-exim -gDebian-exim -m750 /var/spool/exim4
More information about the Pkg-exim4-maintainers
mailing list