Information
The recommended permissions and ownership for the /var/spool/mqueue directory are applied.
Rationale:
The sendmail daemon generally stores its queued mail in the /var/spool/mqueue directory. Queued messages are the messages that have not yet reached their final destination. To ensure the integrity of the messages during storage, the mail queue directory must be secured from unauthorized access.
NOTE: It is possible to specify an alternate spool directory in the /etc/mail/sendmail.cf file via the QueueDirectory parameter.
Solution
Set the recommended permissions and ownership on /var/spool/mqueue:
chmod u=rwx,go= /var/spool/mqueue
chown root /var/spool/mqueue
Default Value:
drwxrwx--- root system /var/spool/mqueue