[Mailman-Users] Permission of data/bounce-events-?????.pck
msapiro at value.net
Tue Jan 31 23:17:42 CET 2006
> I was checking my system for world-writable files, and found lots of
>data/bounce-events-?????.pck that are world-writable:
>imacat at rinse ~ % ls -lt /var/lib/mailman/data | grep 'rw. '
>-rw-rw-rw- 1 list list 0 2006-01-31 01:26 bounce-events-02258.pck
>-rw-rw-rw- 1 list list 4786 2005-12-26 17:36 bounce-events-26086.pck
>imacat at rinse ~ %
> I searched the archive and know that they can be safely deleted.
>But, is that "world-writable" intended? I'm a little worry about it.
Under normal circumstances, the lifetime of this file is at most
REGISTER_BOUNCES_EVERY (default = 15 minutes). The old orphaned ones
will never be read by Mailman, so the exposure isn't too great. The
reading of the file is protected in a try, so I think the worst that
might happen if it got clobbered is that you'd lose a few bounce
But to answer your question, what's the default umask on your system? I
think that's what controls this.
Mark Sapiro <msapiro at value.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan
More information about the Mailman-Users