Hello, I have my SSL private key set up so that it is owned by
root:ssl-cert and permissions
0640. This allows it to be used by others services on the machine which may run as non-root users for security – but still need access to the key. However, monit rejects using this file with the message
The SSL server private key PEM file 'privkey.pem' permission 0640 is wrong, maximum 0700 allowed.
Looks like this comes from src/p.y line #1060 and line #1066 where it looks for
S_IRWXU. Changing this to
(S_IRWXU | S_IRGRP | S_IXGRP ) looks like it should resolve the issue. Would it help if I prepared a PR for this?