[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

zmailer and other uids

To: zmailer@nic.funet.fi
Subject: zmailer and other uids
From: Grzegorz Janoszka <grzesjan@onet.pl>
Date: Mon, 24 Jan 2000 13:37:20 +0100 (EET)


Welcome,

Yeah, zmailer is great, but I don't like one thing in it: probably all
processes are running as root.

I think it would be a great security improvement (I don't tell that
zmailer is not secure), if most of the processes were running as non-root
user. Qmail has qmaild user for smtp-daemon, qmailr for remote
deliveries. I'm not zmailer expert, but I looked at zmailer architecture
and it should be easy to add such features - only to call some of the
set*id() functions right after bind() and to change owner of the queue
directory.

The best functions of the set*id() group are setresuid and setresgid, but
they are linux-specific, under other OS, setreuid and setregid should be
used.

I would by grateful for an answer explaining, if this features will be
introduced in zmailer soon, or if not, or at least if we should sent some
tested patches.

Thanks for all and good luck in work for zmailer :)

-- 
Grzegorz Janoszka
onet.pl network admin

Follow-Ups:
- Re: zmailer and other uids
  - From: Matti Aarnio <mea@nic.funet.fi> (Mon, 24 Jan 2000 21:51:25 +0200)

Prev by Date: Automatic note info for fqlists mailing list messages
Next by Date: Re: zmailer and other uids
Prev by thread: Automatic note info for fqlists mailing list messages
Next by thread: Re: zmailer and other uids
Index(es):
- Date
- Thread