From owner-freebsd-questions@FreeBSD.ORG  Fri Oct 20 10:06:51 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3438716A415
	for <freebsd-questions@freebsd.org>;
	Fri, 20 Oct 2006 10:06:51 +0000 (UTC)
	(envelope-from martin@saturn.pcs.ms)
Received: from saturn.pcs.ms (146.155.76.83.cust.bluewin.ch [83.76.155.146])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8BA2743D45
	for <freebsd-questions@freebsd.org>;
	Fri, 20 Oct 2006 10:06:49 +0000 (GMT)
	(envelope-from martin@saturn.pcs.ms)
Received: from saturn.pcs.ms (localhost [127.0.0.1])
	by saturn.pcs.ms (8.13.1/8.13.1) with ESMTP id k9KAHmEr026630;
	Fri, 20 Oct 2006 12:17:49 +0200 (CEST)
	(envelope-from martin@saturn.pcs.ms)
Received: (from martin@localhost)
	by saturn.pcs.ms (8.13.1/8.13.1/Submit) id k9KAHmqB026629;
	Fri, 20 Oct 2006 12:17:48 +0200 (CEST) (envelope-from martin)
Date: Fri, 20 Oct 2006 12:17:48 +0200
From: Martin Schweizer <lists_freebsd@bluewin.ch>
To: freebsd-questions@freebsd.org
Message-ID: <20061020101748.GA26596@saturn.pcs.ms>
Mail-Followup-To: freebsd-questions@freebsd.org
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="OgqxwSJOaUobr8KG"
Content-Disposition: inline
User-Agent: Mutt/1.4.2.1i
Organization: PC-Service M. Schweizer GmbH, CH-8608 Bubikon, Switzerland
X-PGP-Key: http://www.pc-service.ch/pgp/public_key.asc
X-Fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239
Subject: squirrelmail/sasldb2 access problem
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Martin Schweizer <info@pc-service.ch>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Oct 2006 10:06:51 -0000


--OgqxwSJOaUobr8KG
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hello=20

I use cyrus (incl. sasldb2) , apache, sendmail and squirrelmail (incl. plug=
in=20
to change the sasl password).
My problem is that /usr/local/etc/sasldb2.db needs the following right that=
=20
squirrelmail can change the password in the db:

-rw-rw-rw-   1 root  cyrus   24576 20 Okt 11:46 sasldb2.db

This is a security hole, isn't it? Do you have any ideas?


--=20

Regards

Martin Schweizer
<info@pc-service.ch>

PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon
Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch;
public key : http://www.pc-service.ch/pgp/public_key.asc;=20
fingerprint: EC21 CA4D 5C78 BC2D 73B7  10F9 C1AE 1691 D30F D239;


--OgqxwSJOaUobr8KG
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFFOKJMwa4WkdMP0jkRAnI8AJ4vnt6Sk+d2SLwaACwBcNmiRGdzRgCfdGvt
tDrOqxxX0YBu0hAocg8+BOs=
=5smG
-----END PGP SIGNATURE-----

--OgqxwSJOaUobr8KG--