From be3234e0b28a4157bcd2a4783644b2f9b9b068e7 Mon Sep 17 00:00:00 2001
From: tekati <tekati@ispconfig3>
Date: Sun, 11 Jul 2010 23:16:07 -0400
Subject: [PATCH] Removed other group permissions o= from pam.d/smtp file in installer_base.lib.php file.

---
 install/lib/installer_base.lib.php |    4 +++-
 1 files changed, 3 insertions(+), 1 deletions(-)

diff --git a/install/lib/installer_base.lib.php b/install/lib/installer_base.lib.php
index b49310c..cb489b5 100644
--- a/install/lib/installer_base.lib.php
+++ b/install/lib/installer_base.lib.php
@@ -637,6 +637,8 @@
 		//* configure pam for SMTP authentication agains the ispconfig database
 		$configfile = 'pamd_smtp';
 		if(is_file("$pam/smtp"))    copy("$pam/smtp", "$pam/smtp~");
+		// On some OSes smtp is world readable which allows for reading database information.  Removing world readable rights should have no effect.
+		if(is_file("$pam/smtp"))    exec("chmod o= $pam/smtp");
 		if(is_file("$pam/smtp~"))   exec("chmod 400 $pam/smtp~");
 
 		$content = rf("tpl/$configfile.master");
@@ -1638,4 +1640,4 @@
 	}
 }
 
-?>
\ No newline at end of file
+?>

--
Gitblit v1.9.1