Re: [exim-dev] Candidate patches for privilege escalation

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Phil Pennock
Date:  
À: David Woodhouse
CC: exim-dev
Sujet: Re: [exim-dev] Candidate patches for privilege escalation
On 2010-12-14 at 08:06 +0000, David Woodhouse wrote:
> On Mon, 2010-12-13 at 18:01 -0500, Phil Pennock wrote:
> >
> > One of the installation modes for mailscanner is to make the spool
> > directory be a macro:
> >
> > http://wiki.mailscanner.info/doku.php?id=documentation:configuration:mta:exim:installation
>
> Wait a minute, wasn't that broken even *before* we started to further
> restrict the use of -C and -D?


No, because mailscanner runs as the Exim user, so is therefore trusted.