Re: [exim] sudo - iptables trick

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Marc Perkel
Date:  
À: John Hall
CC: exim-users
Sujet: Re: [exim] sudo - iptables trick


John Hall wrote:
> On 4/15/06, Marc Perkel <marc@???> wrote:
>
>
>> Trying a load reduction trick which I will share if it works. Running
>> into a little snag and this is probably simple but I need to get user
>> mail to run iptables that requires user root to run, and without havinf
>> to use a password to do it.
>>
>
> You could configure sudo to allow mail to run iptables as root without
> a password.
>
> cheers,
> John
>

It's not quite that simple. The OS allows me to run iptables but when
iptables runs it responds with:

iptables v1.3.0: can't initialize iptables table `filter': Permission
denied (you must be root)

So - mail has to be root and then run iptables.