Re: [Exim] Exim TLS

Top Page
Delete this message
Reply to this message
Author: Nigel Metheringham
Date:  
To: Patrick Boutilier
CC: exim-users
Subject: Re: [Exim] Exim TLS
boutilpj@??? said:
> Perhaps exim should ask for the password when it starts up? Kind of
> like the way mod_ssl/apache do it?


This wouldn't be possible the way that exim runs... it drops root and
then re-execs itself if root or other privaledge is needed. I guess it
might just be possible to keep a key around under strictly limited
circumstances, but it would be very hard....

You might be able to have the first process take a password, put it
into a shared memory segment, and then map that in from subsequent
invocations... more than a little messy though and possibly with more
security holes than putting the thing into the config file

    Nigel.


-- 
[ - Opinions expressed are personal and may not be shared by VData - ]
[ Nigel Metheringham                  Nigel.Metheringham@??? ]
[ Phone: +44 1423 850000                         Fax +44 1423 858866 ]