[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7948) mdb_copy insecure permissions

Full_Name: Geert Hendrickx
Version: 2.4.39
OS: centos6
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (

mdb_copy creates a copy using the default umask.  This usually leads to insecure
(world readable) copies, as typically an LDAP databse is 600 owned by some
unprivileged ldap user.

I suggest to copy the behaviour of cp, scp, rsync etc: preserve mode by default,
preserve all metadata (uid:gid, mode, mtime, atime ...) when invoked with -p ?