Re: [exim-dev] Candidate patches for privilege escalation

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMDavid Woodhouse at <-
.MW B Hacker at ->
Delete this message
Reply to this message
Author: Phil Pennock
Date:  
To: David Woodhouse
CC: exim-dev
Subject: Re: [exim-dev] Candidate patches for privilege escalation
On 2010-12-14 at 08:06 +0000, David Woodhouse wrote:
> On Mon, 2010-12-13 at 18:01 -0500, Phil Pennock wrote:
> >
> > One of the installation modes for mailscanner is to make the spool
> > directory be a macro:
> >
> > http://wiki.mailscanner.info/doku.php?id=documentation:configuration:mta:exim:installation
>
> Wait a minute, wasn't that broken even *before* we started to further
> restrict the use of -C and -D?

No, because mailscanner runs as the Exim user, so is therefore trusted.

This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-Re: [exim-dev] Candidate patches for privilege escalation[exim-dev] [PATCH] Implement -D filtering, first pass.->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)