[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
(ITS#7948) mdb_copy insecure permissions
Full_Name: Geert Hendrickx
Version: 2.4.39
OS: centos6
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (212.123.14.2)
mdb_copy creates a copy using the default umask. This usually leads to insecure
(world readable) copies, as typically an LDAP databse is 600 owned by some
unprivileged ldap user.
I suggest to copy the behaviour of cp, scp, rsync etc: preserve mode by default,
preserve all metadata (uid:gid, mode, mtime, atime ...) when invoked with -p ?