[prev in list] [next in list] [prev in thread] [next in thread]
List: mailman-users
Subject: Re: [Mailman-Users] Permission of data/bounce-events-?????.pck
From: Mark Sapiro <msapiro () value ! net>
Date: 2006-01-31 22:17:42
Message-ID: PC17402006013114174202030145d995 () msapiro
[Download RAW message or body]
imacat wrote:
>
> I was checking my system for world-writable files, and found lots of
>data/bounce-events-?????.pck that are world-writable:
>
>imacat@rinse ~ % ls -lt /var/lib/mailman/data | grep 'rw. '
>-rw-rw-rw- 1 list list 0 2006-01-31 01:26 bounce-events-02258.pck
>-rw-rw-rw- 1 list list 4786 2005-12-26 17:36 bounce-events-26086.pck
>=2E..
>imacat@rinse ~ %
>
> I searched the archive and know that they can be safely deleted.
>But, is that "world-writable" intended? I'm a little worry about it.
Under normal circumstances, the lifetime of this file is at most
REGISTER_BOUNCES_EVERY (default = 15 minutes). The old orphaned ones
will never be read by Mailman, so the exposure isn't too great. The
reading of the file is protected in a try, so I think the worst that
might happen if it got clobbered is that you'd lose a few bounce
events.
But to answer your question, what's the default umask on your system? I
think that's what controls this.
--
Mark Sapiro <msapiro@value.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan
------------------------------------------------------
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: http://mail.python.org/mailman/options/mailman-users/mailman-users%40progressive-comp.com
Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic