Author: Suresh Ramasubramanian Date: To: Simon Clayton CC: exim-users Subject: [Exim] Re: Config Problem: Unprivileged user [nobody@blah.com]
+++ Simon Clayton [exim-users] <03/09/01 12:12 +0100>: > >> In more recent versions of exim, you can use untrusted_set_sender
> >> Or else, you can run the php script as a different user from "nobody"
> >> and include that user in the trusted_users list.
>
> Why change the user? "Nobody" can't login to the server and relaying
> is only performed for localhost - is that not secure enough?
"Nobody" is, as the GECOS field (where you got the "unprivileged user" from)
is an unprivileged user. For security reasons, you don't go around making
such a user trusted.