On 21. jul. 2014 17.10.49 CEST, "Kevin A. McGrail" <[email protected]> wrote: >a call with a umask of 0700: > > mkdir( $tmphome, 0700 ) or die "spamd: cannot create $tmphome: $!"; > mkdir( $tmpsadir, 0700 ) or die "spamd: cannot create $tmpsadir: $!"; > >I would start looking at things like that to change the umask to 0770 >and then put the spamd/other daemon in the same group so they can >access each others files.
or change what user spamd should drop priveleges to after call from spamc, then the other client have read access would work, or more long term default it to daemon user and group, then add the problem client into group of daemon its not simple since only root can change running user, umask 0770 is imho overkill when only 0760 is needed ? (expose only read access on group)
