Jason Frisvold wrote:
You mean this? http://bugzilla.spamassassin.org/show_bug.cgi?id=3766
Awesome, thanks for the link :)
It's always interesting to watch the flow of thinking for something
like this... I can agree with both sides of the permissions issue... In my case, the only users with direct access to the server are
admins, so I don't have an issue with non-root users, per se.. However, in the interest of security, I do think it's a good idea to
only let the root/spamd user run that command...
It seems there's no clear-cut answer for this.. I wonder if it's possible to turn this on/off via some config option?
FYI, we are planning to extend the following wrapper method by spitting out a temporary conf file with the correct username in it, and deleting the conf file when done:
http://jousset.org/pub/sa-postfix.en.html
