Re: [Exim] initgroups() when dropping privilege?

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MSuresh Ramasubramanian at <-
M\Suresh Ramasubramanian at ->
Delete this message
Reply to this message
Author: John Dalbec
Date:  
To: Suresh Ramasubramanian
CC: exim-users
Subject: Re: [Exim] initgroups() when dropping privilege?
I've run "chgrp exim /etc/mail/sympa_aliases" (which appears to work)
but it would be nice not to have to do that every time I install the RPM.
Thanks,
John

Suresh Ramasubramanian wrote:

> John Dalbec writes on 10/10/2003 8:58 PM:
>
>> I use a mailing list manager (Sympa) that seems to want a particular
>> file (/etc/mail/sympa_aliases) to be accessible only to members of the
>> "sympa" group. Unfortunately, Exim needs to access the file (as Exim)
>> to be able to verify senders and recipients. I could add the Exim user
>> to the "sympa" group, but since Exim does not do initgroups() when
>> dropping privilege, this doesn't help. Would doing initgroups()
>> introduce any security issues? Presumably on most systems the Exim user
>> would belong only to the Exim group.
>
>
> Would adding the sympa user to the exim group do the trick?
>
>
>




This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] Forcing TLS in LDAP lookupsRe: [Exim] initgroups() when dropping privilege?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)