From 235ef3befbdd4a2d26874b172c7a695fbaab2dc6 Mon Sep 17 00:00:00 2001
From: Spitap <dev@asdrip.fr>
Date: Thu, 27 Oct 2022 11:13:47 +0200
Subject: [PATCH 1/2] thighter config file permission

---
 modoboa_installer/utils.py | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/modoboa_installer/utils.py b/modoboa_installer/utils.py
index 8a793af..c2d73a8 100644
--- a/modoboa_installer/utils.py
+++ b/modoboa_installer/utils.py
@@ -2,10 +2,13 @@
 
 import contextlib
 import datetime
+import getpass
 import glob
 import os
+import pwd
 import random
 import shutil
+import stat
 import string
 import subprocess
 import sys
@@ -307,3 +310,11 @@ def gen_config(dest, interactive=False):
 
     with open(dest, "w") as configfile:
         config.write(configfile)
+
+    # Set file owner to running user and group, and set config file permission to 600
+    current_username = getpass.getuser()
+    current_user = pwd.getpwnam(current_username)
+    os.chown(dest, current_user[2], current_user[3])
+    os.chmod(dest, stat.S_IRUSR|stat.S_IWUSR)
+
+    
\ No newline at end of file

From a5fba032640ad09e678f6c76fdb4f5f713b82160 Mon Sep 17 00:00:00 2001
From: Spitap <dev@asdrip.fr>
Date: Thu, 27 Oct 2022 11:13:47 +0200
Subject: [PATCH 2/2] tighter config file permission

---
 modoboa_installer/utils.py | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/modoboa_installer/utils.py b/modoboa_installer/utils.py
index 8a793af..c2d73a8 100644
--- a/modoboa_installer/utils.py
+++ b/modoboa_installer/utils.py
@@ -2,10 +2,13 @@
 
 import contextlib
 import datetime
+import getpass
 import glob
 import os
+import pwd
 import random
 import shutil
+import stat
 import string
 import subprocess
 import sys
@@ -307,3 +310,11 @@ def gen_config(dest, interactive=False):
 
     with open(dest, "w") as configfile:
         config.write(configfile)
+
+    # Set file owner to running user and group, and set config file permission to 600
+    current_username = getpass.getuser()
+    current_user = pwd.getpwnam(current_username)
+    os.chown(dest, current_user[2], current_user[3])
+    os.chmod(dest, stat.S_IRUSR|stat.S_IWUSR)
+
+    
\ No newline at end of file