21.12.2024 20:55, Viktor Dukhovni via Postfix-users wrote:
On Sat, Dec 21, 2024 at 08:35:29PM +0300, Michael Tokarev via Postfix-users
wrote:
21.12.2024 20:15, Michael Tokarev via Postfix-users wrote:
plus a few other workarounds for lack of cap-dac-override.
It looks like it's hardly possible to get away from cap_dac_override,
because it is relied on in a number of other places. Currently postfix
happily opens non-root-owned maps before chroot_uid() - and these maps
can reside in protected non-root-owned dirs. That will break with no
cap_dac_override obviously.
This is quite deliberate (a design feature), pipe aliases in non-root
owned aliases databases run with the priviliges of the alias file owner.
Sigh. What I pointed out above has nothing to do with pipe aliases
expanded by local(8).
I suggest you take a break from high-volume extemporising, and come
back with narrow, carefully thought out issues or questions tackled
one at a time to a conclusion, with some breaks in between.
A break from what?
I'm doing a large cleanup of stuff found in the postfix packaging in
debian, and come here with somewhat minor questions. This particular
thread is here because I just wanted to ask if such particular approach
(adding a new subcommand) is okay or not.
Sure I can take a break, refraining from further questions, and do
everything the way I can think of, based on my sole experience, - if
there's no interest from the Postfix authors and community in helping
with the issues we've been dealing for 25 years due to some old decisions
made in Debian.
Thanks,
/mjt
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
