The init script for rspamd calls mkdir, chown, and chmod in sequence to create a directory with the specified ownership and permissions: start() { ... mkdir -m0750 -p $RUNDIR chown rspamd:rspamd $RUNDIR chmod g+s $RUNDIR ... It would be better to call "checkpath" (man openrc-run) instead. Checkpath is slightly more portable, being part of OpenRC. But it is also safer: chown and chmod will blindly follow symlinks, creating a security vulnerability if root loses full control of their arguments. Using checkpath (which does not follow symlinks) provides an extra layer of security against that type of vulnerability. (I don't see any issue here, but someone may do something silly in the future...)
Fixed in the tree.