Philip Hazel wrote:
> On Mon, 17 Jan 2005, Ian FREISLICH wrote:
>
> > Is this not a documentation bug then? According to the docs for
> > '-C': "a caller other than root or the Exim user, and the list is
> > different ... gives up its root privilege immediately". What you
> > describe is just "a caller other than root...".
>
> Depends on how your Exim is compiled. The full paragraph in the spec
> reads thus:
>
> When this option is used by a caller other than root or the
> Exim user, and the list is different from the compiled-in
> list, Exim gives up its root privilege immediately, and runs
> with the real and effective uid and gid set to those of
> the caller. However, if ALT_CONFIG_ROOT_ONLY is defined in
> Local/Makefile, root privilege is retained for -C only if the
> caller of Exim is root. This option is not set by default.
>
> How was your Exim compiled?
Ah, that would be it then wouldn't it. It was compiled with
ALT_CONFIG_ROOT_ONLY=yes, I can't for the life of me think why I
changed this from the default.
Sorry about the herring.
Consolation: I'm replacing several hundred qmail installations with
something involving far less bublegum and duct tape (and zealots) :)
Ian
--
Ian Freislich