Re: [maildropl] Maildrop and UID/GID Settings - Tony Earnshaw - net.sourceforge.lists.courier-maildrop

9 messages in net.sourceforge.lists.courier-maildropRe: [maildropl] Maildrop and UID/GID ...

From	Sent On	Attachments
Nathan Frankish	Jul 1, 2007 4:48 am
mouss	Jul 1, 2007 2:12 pm
Nathan Frankish	Jul 1, 2007 6:35 pm
Devin Rubia	Jul 3, 2007 7:01 am
Tony Earnshaw	Jul 4, 2007 1:32 am
Nathan Frankish	Jul 4, 2007 1:45 am
Tony Earnshaw	Jul 4, 2007 1:51 am
Sam Varshavchik	Jul 4, 2007 5:45 am
Tony Earnshaw	Jul 4, 2007 6:35 am

	Permalink for this message Paste this link in email or IM:
	Permalink for this thread Paste this link in email or IM:
	Atom feed for this thread Paste this URL into your reader:

Subject:	Re: [maildropl] Maildrop and UID/GID Settings	Actions...
From:	Tony Earnshaw (ton...@hetnet.nl)
Date:	Jul 4, 2007 1:32:43 am
List:	net.sourceforge.lists.courier-maildrop

Devin Rubia skrev, on 03-07-2007 16:01:

[...]

[SNIP]

From main.C:

static int callback_authlib(struct authinfo *auth, void *void_arg) { [SNIP] setgroupid(auth->sysgroupid); [SNIP] setuid(u); [SNIP] }

Short answer: Yes, maildrop will change to the uid/gid specified by authlib. In fact, it depends on it and will EX_TEMPFAIL if it cannot setuid or cannot find the system user specified (setgid doesn't appear to be tested, though).

In practice this doesn't work without the setuid bit being on. As maildrop is delivered in the rpm (at any rate), the perms are 555; on my rigs maildrop will not change UID to my virtual user, vmail, without suid. I use 6555, that works. Obviously I have this user as global UID/GID in authdaemon's authldaprc.

--Tonni

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets
	Permalink to these results Paste this link in email or IM:
	Atom feed for tracking future search results Paste this URL into your reader: