On Thu, Nov 14, 2002 at 10:41:27AM -0800, Bart Schaefer wrote:
> Nope. Spamc specifically MUST NOT be a setuid executable. Rather, at
> run time it must be able to execute the setuid() [or seteuid()] system
> call, which means it must be running as root (which it is, if started
> from /etc/procmailrc). If it can't setuid(), it ignores the -u option
> and does not send a password to spamd. In other respects it works just
> as it does now.
OK, so there is no way for me to run spamc from my .procmailrc and use
my own scores, rules, and AWL. We WANT that functionality.
[ Most of the people here want to just have this stuff work, so it's
being run via /etc/procmailrc for them. There are other technically
savvy people who want to run it via .procmailrc and NOT
/etc/procmailrc because they get LOTS of mail that they don't want to
run through spamd at all. ]
> The point is that this is only required if you want allow_user_rules 1.
People keep telling me that, but I don't agree. I agree that you
absolutely NEED authentication then, but there are good reasons for
authentication even if you have allow_user_rules 0. There's a minor
privacy issue with user A processing spam via user B's scores. I'd be
willing to ignore this, just making it clear up-front that scores and
config are effectively public. The bigger one is that I can pad your
AWL with bogus entries. I can spoof your boss's address with spammy
mail and DOS you. I agree it's pretty minor. If YOU don't care about
it, then fine, but some people do.
-Michael
--
Michael Stenner Office Phone: 919-660-2513
Duke University, Dept. of Physics [EMAIL PROTECTED]
Box 90305, Durham N.C. 27708-0305
-------------------------------------------------------
This sf.net email is sponsored by: To learn the basics of securing
your web site with SSL, click here to get a FREE TRIAL of a Thawte
Server Certificate: http://www.gothawte.com/rd524.html
_______________________________________________
Spamassassin-talk mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/spamassassin-talk
