On Mon, Jan 11, 2010 at 05:13:32PM -0800, Russ Allbery wrote: > >I assume the underlying difficulty is that ssmtp doesn't have a >privilege separation built into the software the way that most UNIX >MTAs do, where there's a daemon running with elevated privileges that >the client talks to? Sorry Russ but was that a question or a statement? >Creating a separate group for ssmtp seems like a better solution than >using the mail group, yes. Okay. I'll try that approach to fix the bug. >Obviously, it would be ideal if there were some way to not require >users be added to a group to be able to use ssmtp, since I think that's >the expected MTA behavior and it sounds like that requirement isn't an >intentional feature. But unless the SMTP authentication can be done as >a separate helper process that can run with different privileges, it's >hard to find a way to do that. Thanks.
Attachment:
signature.asc
Description: Digital signature