On Wed, 6 Jul 2005, Brian Candler wrote:
> > I don't know about how to solve the rest of your security concerns, but for
> > at least the issue of constraining mail to being written below $home,
> > create_file is the option you're looking for:
>
> Cool, that's my option 4 sorted (I hadn't got to the details of actually
> implementing that one). I don't suppose it applies to the 'logfile' filter
> directive though.
Well, no, because create_file is a an appendfile transport option, and
the logfile/logwrite stuff happens at filter time. You can of course
lock it all out using forbid_filter_logwrite, but it limits the
functionality.
--
Philip Hazel University of Cambridge Computing Service,
ph10@??? Cambridge, England. Phone: +44 1223 334714.
Get the Exim 4 book: http://www.uit.co.uk/exim-book
