CentOS Web Panel

WebPanel => Postfix => Topic started by: become on August 13, 2017, 09:17:41 AM

Title: Default Postfix mysql map configuration is insecured
Post by: become on August 13, 2017, 09:17:41 AM
Any user which have shell access can show postfix password from mysql-virtual_mailbox_maps.cf
This is totally insecured

If this is CWP Standard then this should be fixed
Title: Re: Default Postfix mysql map configuration is insecured
Post by: Jae on August 15, 2017, 05:06:59 AM
Any user which have shell access can show postfix password from mysql-virtual_mailbox_maps.cf
This is totally insecured

If this is CWP Standard then this should be fixed

OMG you right, any user got root password also can do that....