This stems from an issue reported in Ubuntu and Debian here: https://launchpad.net/bugs/730253
http://bugs.debian.org/621042 With gnutls, the mkesmtpdcert script takes great pains to make sure esmtpd.key has permissions of 0600, and the same for the .cert file. But then it creates esmtpd.pem file like this: cat esmtpd.key esmtpd.cert >esmtpd.pem This gives it whatever the default umask of the system is, meaning usually the file will be created wold readable. The attached patch gives it 0600 before putting sensitive data into it. ** Attachment added: "fix-mkesemtpdcert-perms.patch" https://bugs.launchpad.net/bugs/730253/+attachment/1986523/+files/fix-mkesemtpdcert-perms.patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/730253 Title: esmtpd.pem has wrong permissions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
