Addition/Protect.Configure.Files
From iRedMail
(Difference between revisions)
| Line 9: | Line 9: | ||
* On Debian/Ubuntu: | * On Debian/Ubuntu: | ||
| + | {{cmd|<pre> | ||
| + | # chmod 0500 /etc/dovecot/dovecot.conf /etc/dovecot/dovecot-ldap.conf /etc/dovecot/dovecot-mysql.conf # Dovecot | ||
| + | # chmod 0640 /etc/postfix/ldap_*.cf /etc/postfix/mysql_*cf # Postfix | ||
| + | # chmod 0600 /etc/apache2/conf.d/awstats.conf # Awstats | ||
| + | </pre>}} | ||
* On FreeBSD: | * On FreeBSD: | ||
| + | {{cmd|<pre> | ||
| + | # chmod 0500 /etc/dovecot.conf /etc/dovecot-ldap.conf /etc/dovecot-mysql.conf # Dovecot | ||
| + | # chmod 0640 /etc/postfix/ldap_*.cf /etc/postfix/mysql_*cf # Postfix | ||
| + | # chmod 0600 /usr/local/etc/apache22/Includes/awstats.conf # Awstats | ||
| + | </pre>}} | ||
Revision as of 08:33, 25 July 2010
iRedMail-0.6.0 and earlier versions didn't set strict file permission on config files, even they contain username/passwords. Below's a quick fix, if you found that we missed some other files, please contact us.
- On RHEL/CentOS:
| Terminal: |
# chmod 0500 /etc/dovecot.conf /etc/dovecot-ldap.conf /etc/dovecot-mysql.conf # Dovecot # chmod 0640 /etc/postfix/ldap_*.cf /etc/postfix/mysql_*cf # Postfix # chmod 0600 /etc/httpd/conf.d/awstats.conf # Awstats |
- On Debian/Ubuntu:
| Terminal: |
# chmod 0500 /etc/dovecot/dovecot.conf /etc/dovecot/dovecot-ldap.conf /etc/dovecot/dovecot-mysql.conf # Dovecot # chmod 0640 /etc/postfix/ldap_*.cf /etc/postfix/mysql_*cf # Postfix # chmod 0600 /etc/apache2/conf.d/awstats.conf # Awstats |
- On FreeBSD:
| Terminal: |
# chmod 0500 /etc/dovecot.conf /etc/dovecot-ldap.conf /etc/dovecot-mysql.conf # Dovecot # chmod 0640 /etc/postfix/ldap_*.cf /etc/postfix/mysql_*cf # Postfix # chmod 0600 /usr/local/etc/apache22/Includes/awstats.conf # Awstats |
