On Tue, 24 Sep 2002, Duncan Findlay wrote: > On Tue, Sep 24, 2002 at 03:43:29PM -0700, Cheryl L. Southard wrote: > > However, I still think that spamd should be able to setuid to the > > user by itself. According to the man page for spamd: > > -u username, --username=username > > Run as the named user. The alternative, default > > behaviour is to setuid() to the user running "spamc", if > > "spamd" is running as root. > > So the default behavior should be to setuid to the user receiving the e-mail. > > If DROPPRIVS=yes is NOT SET, procmail runs spamc as root. Therefore, > spamd doesn't know what user is running spamc and can't setuid to it.
But NOT if you are running Postfix, which always uses the local user privilidges for local mail delivery. However, I think the problem is how to securely run spamd, rather than how spamc runs. ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Spamassassin-talk mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
