Timothy J Luoma <luomat(_at_)peak(_dot_)org> writes:
...
I am trying to set up a 'search' alias for 'peak.org' where people
send a message to "search(_at_)peak(_dot_)org" and it runs procmail stuff.
1) this should be in /etc/aliases (is that the right file??)
this should be the entry:
search: "|/usr/local/bin/procmail -m /etc/procmailrcs/search"
Looks good.
2) does procmail have to be setuid root (chmod 4755 ?)
If procmail is setuid root, then it will process "/etc/procmailrcs/search"
as the user who owns it. If it isn't setuid root, then it will process
it as the default user set in the sendmail.cf, most likely "daemon". I'll
state that from my staring at procmail's source, I believe it to be secure.
BONUS:
Q: will procmail accept if /etc/procmailrc/search is a
link to a file in my home directory? This way I don't have to have
root privs to change the /etc/procmailrcs/search receipes
Procmail _will_ follow symlinks from /etc/procmailrcs/whatever, but whoever
makes the link needs to be careful: the file will be processed as the
owner of the _symlink_ *not* the owner of the underlying file.
Philip Guenther