rpms/dovecot/F-9 dovecot-1.0-default-settings-passwd.patch, NONE, 1.1 dovecot.sysconfig, NONE, 1.1 dovecot.init, 1.4, 1.5 dovecot.spec, 1.104, 1.105

Dan Horak (sharkcz) fedora-extras-commits at redhat.com
Tue Jul 29 16:22:25 UTC 2008 

Author: sharkcz

Update of /cvs/pkgs/rpms/dovecot/F-9
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv24667

Modified Files:
	dovecot.init dovecot.spec 
Added Files:
	dovecot-1.0-default-settings-passwd.patch dovecot.sysconfig 
Log Message:
* Tue Jul 29 2008 Dan Horák <dan[at]danny.cz> - 1:1.0.15-11
- final solution for #445200 (put the password into /etc/sysconfig/dovecot)


dovecot-1.0-default-settings-passwd.patch:

--- NEW FILE dovecot-1.0-default-settings-passwd.patch ---
--- dovecot-1.0.15/dovecot-example.conf.passwd	2008-07-29 17:31:37.000000000 +0200
+++ dovecot-1.0.15/dovecot-example.conf	2008-07-29 17:31:55.000000000 +0200
@@ -93,6 +93,8 @@
 
 # If key file is password protected, give the password here. Alternatively
 # give it when starting dovecot with -p parameter.
+# Security note: if you have this config file world readable, then put the
+# password into /etc/sysconfig/dovecot.
 #ssl_key_password =
 
 # File containing trusted SSL certificate authorities. Set this only if you


--- NEW FILE dovecot.sysconfig ---
# Here you can specify the password for your SSL certificates
# so the main config file can be world readable. Other command
# line options can be specified too.
#
#OPTIONS="-p my_certificate_password"


Index: dovecot.init
===================================================================
RCS file: /cvs/pkgs/rpms/dovecot/F-9/dovecot.init,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- dovecot.init	18 Jun 2008 13:15:08 -0000	1.4
+++ dovecot.init	29 Jul 2008 16:21:55 -0000	1.5
@@ -8,6 +8,7 @@
 # description: Dovecot Imap Server
 # processname: dovecot
 # config: /etc/dovecot.conf
+# config: /etc/sysconfig/dovecot
 # pidfile: /var/run/dovecot/master.pid
 
 ### BEGIN INIT INFO
@@ -27,6 +28,10 @@
 # Source function library.
 . /etc/init.d/functions
 
+if [ -f /etc/sysconfig/dovecot ]; then
+    . /etc/sysconfig/dovecot
+fi
+
 RETVAL=0
 prog="Dovecot Imap"
 exec="/usr/sbin/dovecot"
@@ -39,7 +44,7 @@
 	[ -f $config ] || exit 6
 
         echo -n $"Starting $prog: "
-	daemon --pidfile $pidfile $exec
+	daemon --pidfile $pidfile $exec $OPTIONS
 	RETVAL=$?
 	[ $RETVAL -eq 0 ] && touch  $lockfile
 	echo


Index: dovecot.spec
===================================================================
RCS file: /cvs/pkgs/rpms/dovecot/F-9/dovecot.spec,v
retrieving revision 1.104
retrieving revision 1.105
diff -u -r1.104 -r1.105
--- dovecot.spec	1 Jul 2008 19:51:10 -0000	1.104
+++ dovecot.spec	29 Jul 2008 16:21:55 -0000	1.105
@@ -1,7 +1,7 @@
 %define upstream 1.0.15
 %define sieve_upstream 1.0.3
 %define pkg_version 1.0.15
-%define my_release 10
+%define my_release 11
 %define pkg_release %{my_release}%{?dist}
 %define pkg_sieve_version 1.0.3
 %define pkg_sieve_release %{my_release}%{?dist}
@@ -32,13 +32,13 @@
 Source6: perfect_maildir.pl
 Source7: dovecot-REDHAT-FAQ.txt
 Source8: http://dovecot.org/releases/sieve/%{sieve_name}-%{sieve_upstream}.tar.gz
+Source9: dovecot.sysconfig
 Patch100: dovecot-1.0.rc15-default-settings.patch
 Patch102: dovecot-1.0.rc2-pam-setcred.patch
 Patch103: dovecot-1.0.beta2-mkcert-permissions.patch
 Patch105: dovecot-1.0.rc7-mkcert-paths.patch
 Patch106: dovecot-1.0.rc27-quota-warning.patch
-#Patch107: dovecot-1.1-unicodedata.patch
-#Patch200: dovecot-%{dovecot_hg}.patch
+Patch107: dovecot-1.0-default-settings-passwd.patch
 Patch200: dovecot-1.0.rc32-split.patch
 
 # XXX this patch needs review and forward porting
@@ -182,6 +182,7 @@
 %patch105 -p1 -b .mkcert-paths
 #%patch107 -p1 -b .unicodedata
 %patch106 -p1 -b .quota-warning
+%patch107 -p1 -b .passwd
 %patch200 -p1 -b .split
 #%patch200 -p1 -b .%{dovecot_hg}
 %patch1000 -p1 -b .winbind
@@ -253,6 +254,9 @@
 mkdir -p $RPM_BUILD_ROOT/%{_sysconfdir}/pam.d
 install -p -m 644 %{SOURCE2} $RPM_BUILD_ROOT/%{_sysconfdir}/pam.d/dovecot
 
+mkdir -p $RPM_BUILD_ROOT/%{_sysconfdir}/sysconfig
+install -p -m 600 %{SOURCE9} $RPM_BUILD_ROOT/%{_sysconfdir}/sysconfig/dovecot
+
 # generate ghost .pem file
 mkdir -p $RPM_BUILD_ROOT/%{ssldir}/certs
 mkdir -p $RPM_BUILD_ROOT/%{ssldir}/private
@@ -366,7 +370,8 @@
 %files -f libs.filelist
 %defattr(-,root,root)
 %doc %{docdir}-%{version}  
-%attr(0640,dovecot,mail) %config(noreplace) %{_sysconfdir}/dovecot.conf
+%config(noreplace) %{_sysconfdir}/dovecot.conf
+%attr(0600,root,root) %config(noreplace) %{_sysconfdir}/sysconfig/dovecot
 %config %{_sysconfdir}/rc.d/init.d/dovecot
 %config(noreplace) %{_sysconfdir}/pam.d/dovecot
 %dir %{ssldir}
@@ -428,6 +433,9 @@
 
 
 %changelog
+* Tue Jul 29 2008 Dan Horák <dan[at]danny.cz> - 1:1.0.15-11
+- final solution for #445200 (put the password into /etc/sysconfig/dovecot)
+
 * Tue Jul  1 2008 Dan Horák <dan[at]danny.cz> - 1:1.0.15-10
 - bump release

More information about the scm-commits mailing list