Re: Bug#24772: OLD PROPOSAL] Mailboxes should have perms 600

To: debian-policy@lists.debian.org
Subject: Re: Bug#24772: OLD PROPOSAL] Mailboxes should have perms 600
From: miquels@cistron.nl (Miquel van Smoorenburg)
Date: 6 Jun 1999 19:20:51 +0200
Message-id: <[🔎] 7jealj$gat$1@Q.cistron.nl>
In-reply-to: <[🔎] E10qZgg-0000GL-00@polya>

In article <cistron.E10qZgg-0000GL-00@polya>,
Julian Gilbey  <J.D.Gilbey@qmw.ac.uk> wrote:
>> I know the Pine 4.x series has issues with perms on mailboxes.
>> This needs to be kept in mind.

I think that's permissions on the mailspool directory, not the mailbox itself.

>The original submitter asked why 660, owned by group mail was needed.
>This could be part of the reason.

It's not needed. On some systems the Mail Delivery Agent (MDA) runs as
user nobody, group mail. All mailboxes have to pre-exist and be mode 660,
group mail so that the MDA can write new messages to the mailbox.

I know of no MDAs in Debian that do this - they're all setuid root and
switch to the users UID when delivering mail.

Mike.
-- 
Indifference will certainly be the downfall of mankind, but who cares?

Reply to:

References:
- Bug#24772: OLD PROPOSAL] Mailboxes should have perms 600
  - From: Julian Gilbey <J.D.Gilbey@qmw.ac.uk>

Prev by Date: Re: [PROPOSAL DRAFT]: editor and sensible-editor
Next by Date: Quality Assurance Group mini-policy
Previous by thread: Bug#24772: OLD PROPOSAL] Mailboxes should have perms 600
Next by thread: Bug#37262: final version of the new logo needed
Index(es):
- Date
- Thread