Path: ...!weretis.net!feeder9.news.weretis.net!feeder8.news.weretis.net!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: none <hzcnjkx656@tormails.com>
Newsgroups: comp.mail.sendmail
Subject: Re: STARTTLS=server: file key file unsafe: Group readable file
Date: Mon, 29 Apr 2024 11:17:02 +0200
Organization: A noiseless patient Spider
Lines: 15
Message-ID: <v0noie$1lhva$1@dont-email.me>
References: <v0nj7q$1k8ng$1@dont-email.me> <v0nmbt$1kt82$1@dont-email.me>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Mon, 29 Apr 2024 11:17:03 +0200 (CEST)
Injection-Info: dont-email.me; posting-host="bd8b90872c271c038fba33b6a2b3ae65";
	logging-data="1755114"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX19+2f1N+bRJi6KbBNemYXywu/9zkfpgDUeO0s8B1bowQw=="
User-Agent: Mozilla Thunderbird
Cancel-Lock: sha1:y6l+ErClEr+gO4qJvC3HUGOAeq8=
In-Reply-To: <v0nmbt$1kt82$1@dont-email.me>
Content-Language: en-GB
Bytes: 1461


> 
>> How can I for once and for all disable this for keys and certs.
> 
> DontBlameSendmail
> GroupReadableKeyFile
> 
> O'Reilly - sendmail 4th Edition Oct 2007.pdf
> chapter 24.9.39 describes it.
> 
> That should work (not tested by me).
> define(`confDONT_BLAME_SENDMAIL',``GroupReadableKeyFile'')
> 

Thanks! I tested it.