[Pkg-dspam-misc] Vote for unstable.

[Matthijs Mohlmann]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Michel Lespinasse wrote:
> On Sat, Jan 14, 2006 at 03:32:50PM +0100, Matthijs Mohlmann wrote:
> 
>>What about uploading the next version to unstable ?
>>
>>I tested the mysql and pgsql backend and they install successfully.
>>Further all other packaging issues and permission problems are solved so
>>far. So I think it's time to release it to unstable.
> 
> 
> Why not, but this is the maintainers decision to make, I think.
> 
I'm one of the maintainers, but there are more maintainers and I like to
hear their opinion too :)

> Regarding permission problems: webfrontend.conf and dspam.conf are currently
> owned by the dspam user. This means the CGI scripts have sufficient rights
> to overwrite these. Is this really correct ? I'd rather have these files
> owned by root and world-readable, I think.
> 

world-readable means that passwords for database servers are readable
for every user, besides that only the administrator can login in the
webinterface and change the webfrontend.conf, there are AFAIK no options
to change things in dspam.conf. On the other hand, we can change
webfrontend.conf owned by root and add a note in README.Debian that if a
person would like to edit the webfrontend.conf by the web interface that
they need to change the permissions...

The users can have also different preferences but these are stored in
/var/spool/dspam. They inherit the configuration from webfrontend.conf
and may override some options.

What do you prefer?

Regards,

Matthijs Mohlmann
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFDyjVY2n1ROIkXqbARAmgHAJ4yo0NJEUdTRrFSUqYzWw9eCDw08ACgoj0L
j7bb85Z+fEv0s6JTc0hiVGE=
=nOc9
-----END PGP SIGNATURE-----