[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7948) mdb_copy insecure permissions



Full_Name: Geert Hendrickx
Version: 2.4.39
OS: centos6
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (212.123.14.2)


mdb_copy creates a copy using the default umask.  This usually leads to insecure
(world readable) copies, as typically an LDAP databse is 600 owned by some
unprivileged ldap user.

I suggest to copy the behaviour of cp, scp, rsync etc: preserve mode by default,
preserve all metadata (uid:gid, mode, mtime, atime ...) when invoked with -p ?