>>>>> "B" == Bill <bill@wagill.com> writes:
B> The NEWLIST documentation in the Majordomo distribution indicates that
B> the <list-name> file should be mode 664.
This is basically required unless you have your groups set up carefully.
It's for the same reason $homedir being 751.
B> Wouldn't this allow anyone in the world to view a list's members' e-mail
B> addresses? (thus defeating any other security measures in the
B> majordomo.cf file).
Yes, but it also allows the MTA (which sometimes runs permissionless) to
actually read the files so that it can send mail to the addresses in them.
If your mailer allows, you can go all the way down to 600. You can also
have 710 on $homedir and likewise tight permissions on everything else.
The trick is to make sure your group memberships are such that your mailer
can always get to the files. This is of course heavily dependent on your
MTA (sometimes even down to specific versions), which is why the Majordomo
documentation is somewhat vague. If you want to deviate, you should know
what you're doing or be willing to experiment (i.e. do it before you have
lists that need to stay up).
- J<
References:
|
|
