On Wed, Nov 21, 2001 at 10:45:24PM +1000, Paul Haesler wrote:
> <<snip>>
> .
> Cc:
> [paul@marge sbin]> 2001-11-21 22:41:42 166Vl8-00017q-00 <=
> paul@haesler.dyndns.org U=paul P=local S=327
> 2001-11-21 22:41:42 166Vl8-00017q-00 Unable to get root to set
> uid and gid for local delivery to paul: uid=1000 euid=1000
> 2001-11-21 22:41:42 166Vl8-00017q-00 Unable to get root to set
> uid and gid for local delivery to paul: uid=1000 euid=1000
>
> It appears there is a problem, although arguably in the
> implementation.
>
> Source code anyone?
>
> --
> Paul Haesler paul@phaesler.org
> ICQ: 124547085
There is some description of the setuid'ism in the exim manual - chapter
55. My quick scan of it revealed that setuid root is used for:
- setting up a listening socked on port 25 (not required when run from
inetd)
- local deliveries (=writing to /var/mail ?)
- reading .forward files (NFS considerations + .forward need not be
world-readable
and I wouldn't be surprised that setuid is required for running
.procmailrc's too
Hope this helps
Cautionary note: No: I haven't read the source code.
--
Karl E. Jørgensen
karl@jorgensen.com
www.karl.jorgensen.com
"One disk to rule them all, One disk to find them. One disk to bring
them all and in the darkness grind them. In the Land of Redmond
where the shadows lie." -- The Silicon Valley Tarot
Henrique Holschuh
Attachment:
pgpvurdv6QYx0.pgp
Description: PGP signature