On Sun, Feb 03, 2002, Sam Varshavchik <mrs...@courier-mta.com> wrote:
On Sun, 3 Feb 2002, Johannes Erdfelt wrote:
On Sun, Feb 03, 2002, Sam Varshavchik <mrs...@courier-mta.com> wrote:
Johannes Erdfelt writes:
I noticed that maildrop requires a different group than what courier
uses. I assume this is because maildrop runs as this gid and it would
be a security problem to access the queue directories, etc.
maildrop is not installed setgid, therefore the group ownership of the
executable is mostly irrelevant.
Why is this check there for then?
. ../maildrop/uidgid || exit 1
if test "$gid" = "$mailgroup"
then
AC_MSG_WARN([ERROR: The maildrop and courier group id are the same:
$gid])
AC_MSG_WARN([ERROR: This is a security hole, they must be different!])
AC_MSG_ERROR([Use --enable-maildrop-gid, or --with-mailgroup, to set a
different maildrop or courier group id])
exit 1
fi
This was left over from when maildrop was installed setgid. Not anymore.
Ahh, that's what I thought.
Thanks for the quick response.
JE
4 messages in net.sourceforge.lists.courier-maildropRe: [maildropl] Re: group permissions?
