[gentoo-commits] repo/gentoo:master commit in: mail-filter/opendkim/

public inbox for gentoo-commits@lists.gentoo.org
 help / color / mirror / Atom feed

From: "Michael Orlitzky" <mjo@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] repo/gentoo:master commit in: mail-filter/opendkim/
Date: Sun, 31 Mar 2019 21:16:39 +0000 (UTC)	[thread overview]
Message-ID: <1554066742.db3f841d797fc4d27befc756e1acf30dbb00035d.mjo@gentoo> (raw)

commit:     db3f841d797fc4d27befc756e1acf30dbb00035d
Author:     Michael Orlitzky <mjo <AT> gentoo <DOT> org>
AuthorDate: Sun Mar 31 21:11:47 2019 +0000
Commit:     Michael Orlitzky <mjo <AT> gentoo <DOT> org>
CommitDate: Sun Mar 31 21:12:22 2019 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=db3f841d

mail-filter/opendkim: add "UMask 0117" to the config by default.

Ralph and I have been discussing the best way to handle a local UNIX
socket. One thing that we both agree on is that, regardless of the
other details, the daemon should be running with a UMask of 0117 to
create the socket group-writable but otherwise private. And since the
opendkim(8) man page says that the UMask is used only for the socket,
there's no reason we shouldn't add it to the default configuration. In
other words, it doesn't hurt anything if you're *not* using a local
socket. This is one fewer thing that we need to document.

Bug: https://bugs.gentoo.org/575666
Signed-off-by: Michael Orlitzky <mjo <AT> gentoo.org>
Package-Manager: Portage-2.3.62, Repoman-2.3.11

 mail-filter/opendkim/opendkim-2.10.3-r9.ebuild | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/mail-filter/opendkim/opendkim-2.10.3-r9.ebuild b/mail-filter/opendkim/opendkim-2.10.3-r9.ebuild
index 841184ed46b..9a9ff14612a 100644
--- a/mail-filter/opendkim/opendkim-2.10.3-r9.ebuild
+++ b/mail-filter/opendkim/opendkim-2.10.3-r9.ebuild
@@ -140,7 +140,13 @@ src_install() {
 	echo "# For use with unbound" >> "${T}/opendkim.conf" || die
 	echo "#TrustAnchorFile /etc/dnssec/root-anchors.txt" \
 		 >> "${T}/opendkim.conf" || die
-	echo UserID opendkim >> "${T}/opendkim.conf" || die
+	echo "UserID opendkim" >> "${T}/opendkim.conf" || die
+
+	# The UMask is really only used for the PID file (root:root) and the
+	# local UNIX socket, if you're using one. It should be 0117 for the
+	# socket, so we might as well set that unconditionally here.
+	echo "UMask 0117" >> "${T}/opendkim.conf" || die
+
 	insinto /etc/opendkim
 	doins "${T}/opendkim.conf"
 }

next             reply	other threads:[~2019-03-31 21:16 UTC|newest]

Thread overview: 58+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2019-03-31 21:16 Michael Orlitzky [this message]
  -- strict thread matches above, loose matches on Subject: below --
2023-06-10 11:43 [gentoo-commits] repo/gentoo:master commit in: mail-filter/opendkim/ Michael Orlitzky
2023-06-10  4:20 Sam James
2023-06-10  4:20 Sam James
2023-02-23  1:03 Michael Orlitzky
2023-02-23  1:03 Michael Orlitzky
2022-07-29  4:17 Sam James
2022-03-23 10:35 Agostino Sarubbo
2022-03-23  9:56 Jakov Smolić
2022-03-23  0:14 Sam James
2022-02-23 12:34 Michael Orlitzky
2021-05-02  8:59 Mikle Kolyada
2021-03-25 23:31 Conrad Kostecki
2020-12-28 19:12 Michael Orlitzky
2020-12-23 18:11 Michael Orlitzky
2020-12-23 14:52 Marek Szuba
2020-12-21 13:23 Michael Orlitzky
2020-12-09 15:05 Michael Orlitzky
2020-10-01 11:09 Sam James
2019-12-18 16:32 Joonas Niilola
2019-12-15 14:46 Agostino Sarubbo
2019-12-15 13:43 Agostino Sarubbo
2019-10-08 21:42 Michael Orlitzky
2019-07-22  8:58 Mikle Kolyada
2019-07-18 14:32 Thomas Deutschmann
2019-07-04  1:55 Michael Orlitzky
2019-06-14 13:39 Michael Orlitzky
2019-06-14 13:39 Michael Orlitzky
2019-05-01  3:50 Michael Orlitzky
2019-05-01  3:50 Michael Orlitzky
2019-04-16 22:59 Michael Orlitzky
2019-04-06 11:32 Michael Orlitzky
2019-04-02  1:37 Thomas Deutschmann
2019-03-30 10:46 Agostino Sarubbo
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-03-27 17:19 Michael Orlitzky
2019-01-07 19:15 Lars Wendler
2018-09-14 22:13 Thomas Deutschmann
2017-03-31 12:09 Agostino Sarubbo
2017-03-03 23:52 Alon Bar-Lev
2016-08-05 14:14 Michał Górny
2016-06-03 13:03 Anthony G. Basile
2016-02-16 12:45 Eray Aslan
2016-02-14 10:11 Agostino Sarubbo
2016-01-15  9:03 Agostino Sarubbo

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:841184ed46 dfblob:9a9ff14612 )
 OR (
bs:"[gentoo-commits] repo/gentoo:master commit in: mail-filter/opendkim/" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1554066742.db3f841d797fc4d27befc756e1acf30dbb00035d.mjo@gentoo \
    --to=mjo@gentoo.org \
    --cc=gentoo-commits@lists.gentoo.org \
    --cc=gentoo-dev@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox