xupetas:
[ Charset ISO-8859-1 unsupported, converting... ]
> Hello,
>
> I've updated today my Postifx for the correct patchlevel to avoid
> the problens identifyed with privilege escalation using hardlinks.
>
> However i've hit a bump.
>
> I have extremly large mailboxes on a server that are used for
> testing, but that i dont want to backup at night.
> The way i have found around this is to place those mailboxes on
> another directory and then symlink them to the /var/spool/mail/$user
> and telling the backup program only to backup inside that directory.
>
> Since i have installed the patch i cannot deliver mail to those
> files. I keep getting the this error:
>
> "cannot update mailbox /var/mail/develop for user develop. file
> is a symbolic link"
>
> Is there a way around this?
It's called open source + (vi or emacs).
> Is there a parameter that i can include
> in postfix's configuration file to avoid this problem?
Sorry. Symlinks are a security hole on Linux, Solaris, IRIX, when
users other than root have write access to the mail directory.
There is an effort underway to legitimize hardlinks to symlinks on
every system, so this Postfix restriction will not be made
configurable.
> Another MDA is not the solution for the load on the server is very very high.
If you find an MDA that follows symlinks, report a security hole.
Wietse
> Can anybody help me?
>
> Thanks
> Nuno
>
> Ps: sorry about my english :)
