Gene Heskett a écrit : > OTOH, if I run it as root, then the clients have no perms. Tell me a way > around that please. >
I run it as root, like almost everybody. the "clients" only need read access to the directory, which should be the case by default, unless you played with the root umask. >> This is ugly. use a subdirectory. for example >> /var/lib/spamassassin/keys, and make this directory only accessible to >> the sa-update user (mode 600). > > Humm, and spec that in the --gpghomedir argument I assume? > yes. >> the user who runs sa-update does so to update the rules. not to scan >> mail, update Bayes, ... etc. do not use it for that. >> >> the user who scans incoming mail should be used to train (his) bayes. > > As is being done now. >>> Thanks for any more guidance, I feel like I need a white cane at this >>> point. :) >> as long as you are not a turkey, there aren't much risks these days :) > > Nah, just an old fart trying to keep busy. I may eat some turkey though. :) > > Thanks everybody. >
