exim/procmail command permissions

src/freedombone-base-email

@@ -907,6 +907,13 @@ function install_email_with_tor {
         chown -R $MY_USERNAME:$MY_USERNAME /home/$MY_USERNAME/Maildir
     fi
 
+    if [ -f /usr/sbin/exim ]; then
+        chmod u+s /usr/sbin/exim
+    fi
+    if [ -f /usr/sbin/exim4 ]; then
+        chmod u+s /usr/sbin/exim4
+    fi
+
     function_check configure_firewall_for_email
     configure_firewall_for_email
     dpkg-reconfigure --frontend noninteractive exim4-config
@@ -1018,6 +1025,13 @@ function install_email_basic {
     function_check configure_firewall_for_email
     configure_firewall_for_email
 
+    if [ -f /usr/sbin/exim ]; then
+        chmod u+s /usr/sbin/exim
+    fi
+    if [ -f /usr/sbin/exim4 ]; then
+        chmod u+s /usr/sbin/exim4
+    fi
+
     dpkg-reconfigure --frontend noninteractive exim4-config
     systemctl restart exim4
 }
@@ -1061,6 +1075,10 @@ function create_procmail {
         chown root:root /etc/skel/.procmailrc
     fi
 
+    if [ -f /usr/bin/procmail ]; then
+        chmod 6755 /usr/bin/procmail
+    fi
+
     mark_completed $FUNCNAME
 }
 

src/freedombone-utils-setup

@@ -456,6 +456,16 @@ function lockdown_permissions {
     chmod 4755 /usr/bin/sudo
     chmod 4755 /usr/lib/sudo/sudoers.so
     chown root:root /etc/sudoers
+
+    if [ -f /usr/bin/procmail ]; then
+        chmod 6755 /usr/bin/procmail
+    fi
+    if [ -f /usr/sbin/exim ]; then
+        chmod u+s /usr/sbin/exim
+    fi
+    if [ -f /usr/sbin/exim4 ]; then
+        chmod u+s /usr/sbin/exim4
+    fi
 }
 
 function disable_core_dumps {