Hi Florian,
if (!S_ISREG(buf.st_mode) || (buf.st_mode& 0137) != 0 || ((buf.st_mode& 0040) != 0&& buf.st_gid != getgid())) { syslog(L_ERROR, "bad ownership or permissions on private key" " '%s': private key must be mode 640 at most, and readable by the news " "group only", cert_file);^^^^^^^^^ this must be key_file, by the way, the error message "bad ownership or permissions on private key '/etc/news/cert.pem'" is rather confusing...
Oh, yes, you're right. key_file is used everywhere near that check; it is also the right variable to use here (and not cert_file). Thanks for having seen that error.
And may I request that my key.pem may be a symlink pointing to the actual key file? Currently, this won't work as a symlink's permissions will always be lrwxrwxrwx.
As Russ suggests, we will use stat() instead of lstat() in INN 2.5.3. -- Julien ÉLIE « Mettez-vous de profil avec les épaules de face et ne bougeons plus je vous prie. » (Astérix) -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
